Oval Definition:	oval:com.ubuntu.trusty:def:20198355000
Revision Date: 2019-02-15 Version: 1 Title: CVE-2019-8355 on Ubuntu 14.04 LTS (trusty) - medium. Description: An issue was discovered in SoX 14.4.2. In xmalloc.h, there is an integer overflow on the result of multiplication fed into the lsx_valloc macro that wraps malloc. When the buffer is allocated, it is smaller than expected, leading to a heap-based buffer overflow in channels_start in remix.c. Family: unix Class: vulnerability Status: Reference(s): CVE-2019-8355 Platform(s): Ubuntu 14.04 LTS Product(s): Definition Synopsis Ubuntu 14.04 LTS (trusty) is installed. AND The vulnerability of the 'sox' package in trusty is not known (status: 'needs-triage'). It is pending evaluation.
BACK