Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A heap-based buffer overflow vulnerability exists in the sphere.c start_read() functionality of Sound Exchange libsox 14.4.2 and master commit 42b3557e. A specially-crafted file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability.
CVSS Information
N/A
Vulnerability Type
堆缓冲区溢出
Vulnerability Title
Sound Exchange libsox 缓冲区错误漏洞
Vulnerability Description
Sound Exchange libsox是Sound Exchange组织的一个声音样本文件格式读取器/写入器和音效处理器的库。主要是为 SoX 使用而开发的,但对任何声音应用程序都很有用。 Sound Exchange libsox 14.4.2版本存在安全漏洞,该漏洞源于sphere.c的start_read()函数中存在堆缓冲区溢出漏洞,特制文件可能导致堆缓冲区溢出。攻击者利用该漏洞提供恶意文件从而触发此漏洞。
CVSS Information
N/A
Vulnerability Type
N/A