USN-5904-2: SoX regression

Read Time:45 Second

USN-5904-1 fixed vulnerabilities in SoX. It was discovered that the fix for
CVE-2021-33844 was incomplete. This update fixes the problem.

Original advisory details:

Helmut Grohne discovered that SoX incorrectly handled certain inputs. If a
user or an automated system were tricked into opening a specially crafted
input file, a remote attacker could possibly use this issue to cause a
denial of service. This issue only affected Ubuntu 14.04 ESM, Ubuntu 16.04 ESM,
and Ubuntu 18.04 LTS. (CVE-2019-13590)

Helmut Grohne discovered that SoX incorrectly handled certain inputs. If a
user or an automated system were tricked into opening a specially crafted
input file, a remote attacker could possibly use this issue to cause a
denial of service. (CVE-2021-23159, CVE-2021-23172, CVE-2021-23210,
CVE-2021-33844, CVE-2021-3643, CVE-2021-40426, CVE-2022-31650, and
CVE-2022-31651)

Generated by Feedzy

Cyber Security News

Friday Squid Blogging: Squid Mating Strategies

New Attack Against Self-Driving Car AI

UK’s AI Safety Institute Unveils Platform to Accelerate Safe AI Development

Boeing refused to pay $200 million LockBit ransomware demand

RSAC: Experts Highlight Novel Cyber Threats and Tactics

Wild Wisdom: What Technology Learns from the Natural World

$10 million reward offer for apprehension of unmasked LockBit ransomware leader

#RSAC: Why Cybersecurity Professionals Have a Duty to Secure AI

#RSAC: How CISOs Should Protect Themselves Against Indictments

GLSA 202405-33: PoDoFo: Multiple Vulnerabilities

GLSA 202405-32: Mozilla Thunderbird: Multiple Vulnerabilities

GLSA 202405-31: Kubelet: Privilege Escalation

GLSA 202405-30: Rebar3: Command Injection

chromium-124.0.6367.201-1.el9

chromium-124.0.6367.201-1.fc38