SecuritySpace - CVE-2019-8354

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2019-8354

Description: An issue was discovered in SoX 14.4.2. lsx_make_lpf in effect_i_dsp.c has an integer overflow on the result of multiplication fed into malloc. When the buffer is allocated, it is smaller than expected, leading to a heap-based buffer overflow.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2019-8354
https://sourceforge.net/p/sox/bugs/319
https://lists.debian.org/debian-lts-announce/2019/05/msg00040.html
https://usn.ubuntu.com/4079-1/
https://usn.ubuntu.com/4079-2/

CVE ID:	CVE-2019-8354
Description:	An issue was discovered in SoX 14.4.2. lsx_make_lpf in effect_i_dsp.c has an integer overflow on the result of multiplication fed into malloc. When the buffer is allocated, it is smaller than expected, leading to a heap-based buffer overflow.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2019-8354 https://sourceforge.net/p/sox/bugs/319 https://lists.debian.org/debian-lts-announce/2019/05/msg00040.html https://usn.ubuntu.com/4079-1/ https://usn.ubuntu.com/4079-2/