sox

A vulnerability was found in SoX where a divide by  zero bug exists in wav.c:967, functon startread. With a crafted wav file, the application crashes.

A vulnerability was found in SoX,  where a divide by zero exists in voc.c:334, functon read_samples.

A vulnerability was found in SoX, where a heap overflow was found in hcom.c:161, function startread. The vulnerability is exploitable with a crafted hcomn file.

A vulnerability was found in SoX, where a heap based overflow was found in  formats_i.c:376, function lsx_read_w_buf.

In the startread function in xa.c in Sound eXchange (SoX) through 14.4.2, a corrupt header specifying zero channels triggers an infinite loop with a...

In lsx_aiffstartread in aiff.c in Sound eXchange (SoX) 14.4.2, there is a Use-After-Free vulnerability triggered by supplying a malformed AIFF file.

There is a stack-based buffer overflow in the lsx_ms_adpcm_block_expand_i function of adpcm.c in Sound eXchange (SoX) 14.4.2. A crafted input will lead to a...

There is a reachable assertion abort in the function sox_append_comment() in formats.c in Sound eXchange (SoX) 14.4.2. A crafted input will lead to a denial...

There is a heap-based buffer overflow in the ImaExpandS function of ima_rw.c in Sound eXchange (SoX) 14.4.2. A crafted input will lead to a denial of...

The wavwritehdr function in wav.c in Sound eXchange (SoX) 14.4.2 allows remote attackers to cause a denial of service (divide-by-zero error and application...

The read_samples function in hcom.c in Sound eXchange (SoX) 14.4.2 allows attackers to cause a denial of service (invalid memory read and application crash)...

The startread function in wav.c in Sound eXchange (SoX) 14.4.2 allows attackers to cause a denial of service (divide-by-zero error and application crash)...