Oval Definition:oval:com.ubuntu.xenial:def:20198355000
Revision Date:2019-02-15Version:1
Title:CVE-2019-8355 on Ubuntu 16.04 LTS (xenial) - medium.
Description:An issue was discovered in SoX 14.4.2. In xmalloc.h, there is an integer overflow on the result of multiplication fed into the lsx_valloc macro that wraps malloc. When the buffer is allocated, it is smaller than expected, leading to a heap-based buffer overflow in channels_start in remix.c.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2019-8355
Platform(s):Ubuntu 16.04 LTS
Product(s):
Definition Synopsis
  • Ubuntu 16.04 LTS (xenial) is installed.
  • AND The 'sox' package in xenial is affected and needs fixing.
  • BACK