MGASA-2014-0561

See a problem?
Please try reporting it to the source first.

Source

https://advisories.mageia.org/MGASA-2014-0561.html

Import Source

https://advisories.mageia.org/MGASA-2014-0561.json

JSON Data

https://api.test.osv.dev/v1/vulns/MGASA-2014-0561

Related

CVE-2014-8145

Published

2014-12-31T12:28:04Z

Modified

2014-12-31T12:20:03Z

Summary

Updated sox packages fix CVE-2014-8145

Details

Updated sox packages fix security vulnerability:

The sox command line tool is affected by two heap-based buffer overflows, respectively located in functions start_read() and AdpcmReadBlock(). A specially crafted wav file can be used to trigger the vulnerabilities (CVE-2014-8145).

References

Credits

- Mageia - COORDINATOR
- - https://wiki.mageia.org/en/Packages_Security_Team

Affected packages

Mageia:4 / sox

Package

Name: sox
Purl: pkg:rpm/mageia/sox?distro=mageia-4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

14.4.1-3.1.mga4

Ecosystem specific

{
    "section": "core"
}