Oval Definition:
oval:com.ubuntu.cosmic:def:201983560000000
Revision Date
:
2019-02-15
Version
:
1
Title
:
CVE-2019-8356 on Ubuntu 18.10 (cosmic) - medium.
Description
:
An issue was discovered in SoX 14.4.2. One of the arguments to bitrv2 in fft4g.c is not guarded, such that it can lead to write access outside of the statically declared array, aka a stack-based buffer overflow.
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
CVE-2019-8356
Platform(s)
:
Ubuntu 18.10
Product(s)
:
Definition Synopsis
Ubuntu 18.10 (cosmic) is installed.
AND
sox: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life').
BACK