CVE-2019-8354
- Source
- https://cve.org/CVERecord?id=CVE-2019-8354
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-8354.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2019-8354
- Downstream
- Related
- Published
- 2019-02-15T23:29:00.277Z
- Modified
- 2026-03-10T22:50:58.589389Z
- Severity
-
- 5.0 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
An issue was discovered in SoX 14.4.2. lsxmakelpf in effectidsp.c has an integer overflow on the result of multiplication fed into malloc. When the buffer is allocated, it is smaller than expected, leading to a heap-based buffer overflow.
- References
Affected packages
Git /
Database specific
source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-8354.json"
unresolved_ranges
[
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "14.4.2"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "8.0"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "16.04"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "18.04"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "19.04"
}
]
}
]