DSA-5356-2

Source

https://storage.googleapis.com/debian-osv/dsa-osv/DSA-5356-2.json

Published

2023-02-20T00:00:00Z

Modified

2023-03-17T20:09:03.282385Z

Details

Multiple security issues were discovered in Sox, the Swiss Army knife of sound processing programs, which could result in denial of service or potentially the execution of arbitrary code if a malformed audio file is processed.

For the stable distribution (bullseye), these problems have been fixed in version 14.4.2+git20190427-2+deb11u1.

We recommend that you upgrade your sox packages.

For the detailed security status of sox please refer to its security tracker page at: \ https://security-tracker.debian.org/tracker/sox

References

https://www.debian.org/security/2023/dsa-5356

Affected packages

Debian:11 / sox

sox

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0

Fixed

14.4.2+git20190427-2+deb11u2

Affected versions

14.*

14.4.2+git20190427-2

14.4.2+git20190427-2+deb11u1