[v2.7] sox: input sanitization errors (CVE-2014-8145)
Multiple heap-based buffer overflows in Sound eXchange (SoX) 14.4.1 and earlier allow remote attackers to have unspecified impact via a crafted WAV file to the (1) start_read or (2) AdpcmReadBlock function.
•MISC:
http://packetstormsecurity.com/files/129699/SoX-14.4.1-Heap-Buffer-Overflow.html
•MISC: http://www.ocert.org/advisories/ocert-2014-010.html
•BID:71774
•URL: http://www.securityfocus.com/bid/71774
(from redmine: issue id 3824, created on 2015-01-29, closed on 2017-09-05)
- Relations:
- parent #3822