OpenBSD VuXML: Documenting security issues in the OpenBSD Ports & Packages Collection

sox -- buffer overflows while handling malicious WAV files

Affected packages
sox < 12.17.4p1

Details

VuXML ID 1bb61f4e-e31c-11d8-835a-00304f19272c
Discovery 2004-07-28
Entry 2004-07-31
Modified 2005-02-21

Ulf Harnhammar discovered two buffer overflows in SoX. They occur when the sox or play commands handle malicious .WAV files.

References

CVE Name CAN-2004-0557

Copyright © 2003-2005 Jacques Vidrine, Robert Nagy, and contributors.
Please see the source of this document for full copyright information.