CVE-2017-15372 - log back

CVE-2017-15372 created at 25 Sep 2019 19:31:40
Severity
+ Low
Remote
+ Local
Type
+ Denial of service
Description
+ There is a stack-based buffer overflow in the lsx_ms_adpcm_block_expand_i function of adpcm.c in Sound eXchange (SoX) 14.4.2. A crafted input will lead to a denial of service attack during conversion of an audio file.
References
+ https://github.com/mansr/sox/commit/001c337552912d286ba68086ac378f6fdc1e8b50
+ https://lists.debian.org/debian-lts-announce/2017/11/msg00043.html
Notes