Oval Definition:	oval:com.ubuntu.xenial:def:201983570000000
Revision Date: 2019-02-15 Version: 1 Title: CVE-2019-8357 on Ubuntu 16.04 LTS (xenial) - medium. Description: An issue was discovered in SoX 14.4.2. lsx_make_lpf in effect_i_dsp.c allows a NULL pointer dereference. It was discovered that SoX incorrectly handled certain MP3 files. An attacker could possibly use this issue to cause a denial of service. (CVE-2019-8354, CVE-2019-8355, CVE-2019-8356, CVE-2019-8357) Family: unix Class: vulnerability Status: Reference(s): CVE-2019-8357 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND sox package in xenial was vulnerable but has been fixed (note: '14.4.1-5+deb8u4ubuntu0.1').
BACK