An update for sox is now available for openEuler-22.03-LTS-SP4,openEuler-24.03-LTS-SP1,openEuler-22.03-LTS-SP3,openEuler-20.03-LTS-SP4,openEuler-22.03-LTS-SP1,openEuler-24.03-LTS Security Advisory openeuler-security@openeuler.org openEuler security committee openEuler-SA-2025-1020 Final 1.0 1.0 2025-01-10 Initial 2025-01-10 2025-01-10 openEuler SA Tool V1.0 2025-01-10 sox security update An update for sox is now available for openEuler-22.03-LTS-SP4,openEuler-24.03-LTS-SP1,openEuler-22.03-LTS-SP3,openEuler-20.03-LTS-SP4,openEuler-22.03-LTS-SP1,openEuler-24.03-LTS SoX is a cross-platform (Windows, Linux, MacOS X, etc.) command line utility that can convert various formats of computer audio files in to other formats. It can also apply various effects to these sound files, and, as an added bonus, SoX can play and record audio files on most platforms. Security Fix(es): An issue was discovered in libsox.a in SoX 14.4.2. In sox-fmt.h (startread function), there is an integer overflow on the result of integer addition (wraparound to 0) fed into the lsx_calloc macro that wraps malloc. When a NULL pointer is returned, it is used without a prior check that it is a valid pointer, leading to a NULL pointer dereference on lsx_readbuf in formats_i.c.(CVE-2019-13590) An issue was discovered in SoX 14.4.2. lsx_make_lpf in effect_i_dsp.c has an integer overflow on the result of multiplication fed into malloc. When the buffer is allocated, it is smaller than expected, leading to a heap-based buffer overflow.(CVE-2019-8354) An issue was discovered in SoX 14.4.2. In xmalloc.h, there is an integer overflow on the result of multiplication fed into the lsx_valloc macro that wraps malloc. When the buffer is allocated, it is smaller than expected, leading to a heap-based buffer overflow in channels_start in remix.c.(CVE-2019-8355) An issue was discovered in SoX 14.4.2. One of the arguments to bitrv2 in fft4g.c is not guarded, such that it can lead to write access outside of the statically declared array, aka a stack-based buffer overflow.(CVE-2019-8356) An issue was discovered in SoX 14.4.2. lsx_make_lpf in effect_i_dsp.c allows a NULL pointer dereference.(CVE-2019-8357) An update for sox is now available for openEuler-22.03-LTS-SP4,openEuler-24.03-LTS-SP1,openEuler-22.03-LTS-SP3,openEuler-20.03-LTS-SP4,openEuler-22.03-LTS-SP1,openEuler-24.03-LTS. openEuler Security has rated this update as having a security impact of medium. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section. Medium sox https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-1020 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2019-13590 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2019-8354 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2019-8355 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2019-8356 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2019-8357 https://nvd.nist.gov/vuln/detail/CVE-2019-13590 https://nvd.nist.gov/vuln/detail/CVE-2019-8354 https://nvd.nist.gov/vuln/detail/CVE-2019-8355 https://nvd.nist.gov/vuln/detail/CVE-2019-8356 https://nvd.nist.gov/vuln/detail/CVE-2019-8357 openEuler-22.03-LTS-SP4 openEuler-24.03-LTS-SP1 openEuler-22.03-LTS-SP3 openEuler-20.03-LTS-SP4 openEuler-22.03-LTS-SP1 openEuler-24.03-LTS sox-14.4.2.0-31.oe2203sp4.x86_64.rpm sox-debuginfo-14.4.2.0-31.oe2203sp4.x86_64.rpm sox-debugsource-14.4.2.0-31.oe2203sp4.x86_64.rpm sox-devel-14.4.2.0-31.oe2203sp4.x86_64.rpm sox-14.4.2.0-31.oe2403sp1.x86_64.rpm sox-debuginfo-14.4.2.0-31.oe2403sp1.x86_64.rpm sox-debugsource-14.4.2.0-31.oe2403sp1.x86_64.rpm sox-devel-14.4.2.0-31.oe2403sp1.x86_64.rpm sox-14.4.2.0-31.oe2203sp3.x86_64.rpm sox-debuginfo-14.4.2.0-31.oe2203sp3.x86_64.rpm sox-debugsource-14.4.2.0-31.oe2203sp3.x86_64.rpm sox-devel-14.4.2.0-31.oe2203sp3.x86_64.rpm sox-14.4.2.0-31.oe2003sp4.x86_64.rpm sox-debuginfo-14.4.2.0-31.oe2003sp4.x86_64.rpm sox-debugsource-14.4.2.0-31.oe2003sp4.x86_64.rpm sox-devel-14.4.2.0-31.oe2003sp4.x86_64.rpm sox-14.4.2.0-31.oe2203sp1.x86_64.rpm sox-debuginfo-14.4.2.0-31.oe2203sp1.x86_64.rpm sox-debugsource-14.4.2.0-31.oe2203sp1.x86_64.rpm sox-devel-14.4.2.0-31.oe2203sp1.x86_64.rpm sox-14.4.2.0-31.oe2403.x86_64.rpm sox-debuginfo-14.4.2.0-31.oe2403.x86_64.rpm sox-debugsource-14.4.2.0-31.oe2403.x86_64.rpm sox-devel-14.4.2.0-31.oe2403.x86_64.rpm sox-help-14.4.2.0-31.oe2203sp4.noarch.rpm sox-help-14.4.2.0-31.oe2403sp1.noarch.rpm sox-help-14.4.2.0-31.oe2203sp3.noarch.rpm sox-help-14.4.2.0-31.oe2003sp4.noarch.rpm sox-help-14.4.2.0-31.oe2203sp1.noarch.rpm sox-help-14.4.2.0-31.oe2403.noarch.rpm sox-14.4.2.0-31.oe2203sp4.aarch64.rpm sox-debuginfo-14.4.2.0-31.oe2203sp4.aarch64.rpm sox-debugsource-14.4.2.0-31.oe2203sp4.aarch64.rpm sox-devel-14.4.2.0-31.oe2203sp4.aarch64.rpm sox-14.4.2.0-31.oe2403sp1.aarch64.rpm sox-debuginfo-14.4.2.0-31.oe2403sp1.aarch64.rpm sox-debugsource-14.4.2.0-31.oe2403sp1.aarch64.rpm sox-devel-14.4.2.0-31.oe2403sp1.aarch64.rpm sox-14.4.2.0-31.oe2203sp3.aarch64.rpm sox-debuginfo-14.4.2.0-31.oe2203sp3.aarch64.rpm sox-debugsource-14.4.2.0-31.oe2203sp3.aarch64.rpm sox-devel-14.4.2.0-31.oe2203sp3.aarch64.rpm sox-14.4.2.0-31.oe2003sp4.aarch64.rpm sox-debuginfo-14.4.2.0-31.oe2003sp4.aarch64.rpm sox-debugsource-14.4.2.0-31.oe2003sp4.aarch64.rpm sox-devel-14.4.2.0-31.oe2003sp4.aarch64.rpm sox-14.4.2.0-31.oe2203sp1.aarch64.rpm sox-debuginfo-14.4.2.0-31.oe2203sp1.aarch64.rpm sox-debugsource-14.4.2.0-31.oe2203sp1.aarch64.rpm sox-devel-14.4.2.0-31.oe2203sp1.aarch64.rpm sox-14.4.2.0-31.oe2403.aarch64.rpm sox-debuginfo-14.4.2.0-31.oe2403.aarch64.rpm sox-debugsource-14.4.2.0-31.oe2403.aarch64.rpm sox-devel-14.4.2.0-31.oe2403.aarch64.rpm sox-14.4.2.0-31.oe2203sp4.src.rpm sox-14.4.2.0-31.oe2403sp1.src.rpm sox-14.4.2.0-31.oe2203sp3.src.rpm sox-14.4.2.0-31.oe2003sp4.src.rpm sox-14.4.2.0-31.oe2203sp1.src.rpm sox-14.4.2.0-31.oe2403.src.rpm An issue was discovered in libsox.a in SoX 14.4.2. In sox-fmt.h (startread function), there is an integer overflow on the result of integer addition (wraparound to 0) fed into the lsx_calloc macro that wraps malloc. When a NULL pointer is returned, it is used without a prior check that it is a valid pointer, leading to a NULL pointer dereference on lsx_readbuf in formats_i.c. 2025-01-10 CVE-2019-13590 openEuler-22.03-LTS-SP4 openEuler-24.03-LTS-SP1 openEuler-22.03-LTS-SP3 openEuler-20.03-LTS-SP4 openEuler-22.03-LTS-SP1 openEuler-24.03-LTS Medium 5.5 AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H sox security update 2025-01-10 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-1020 An issue was discovered in SoX 14.4.2. lsx_make_lpf in effect_i_dsp.c has an integer overflow on the result of multiplication fed into malloc. When the buffer is allocated, it is smaller than expected, leading to a heap-based buffer overflow. 2025-01-10 CVE-2019-8354 openEuler-22.03-LTS-SP4 openEuler-24.03-LTS-SP1 openEuler-22.03-LTS-SP3 openEuler-20.03-LTS-SP4 openEuler-22.03-LTS-SP1 openEuler-24.03-LTS Medium 5.0 AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H sox security update 2025-01-10 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-1020 An issue was discovered in SoX 14.4.2. In xmalloc.h, there is an integer overflow on the result of multiplication fed into the lsx_valloc macro that wraps malloc. When the buffer is allocated, it is smaller than expected, leading to a heap-based buffer overflow in channels_start in remix.c. 2025-01-10 CVE-2019-8355 openEuler-22.03-LTS-SP4 openEuler-24.03-LTS-SP1 openEuler-22.03-LTS-SP3 openEuler-20.03-LTS-SP4 openEuler-22.03-LTS-SP1 openEuler-24.03-LTS Medium 5.5 AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H sox security update 2025-01-10 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-1020 An issue was discovered in SoX 14.4.2. One of the arguments to bitrv2 in fft4g.c is not guarded, such that it can lead to write access outside of the statically declared array, aka a stack-based buffer overflow. 2025-01-10 CVE-2019-8356 openEuler-22.03-LTS-SP4 openEuler-24.03-LTS-SP1 openEuler-22.03-LTS-SP3 openEuler-20.03-LTS-SP4 openEuler-22.03-LTS-SP1 openEuler-24.03-LTS Medium 5.5 AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H sox security update 2025-01-10 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-1020 An issue was discovered in SoX 14.4.2. lsx_make_lpf in effect_i_dsp.c allows a NULL pointer dereference. 2025-01-10 CVE-2019-8357 openEuler-22.03-LTS-SP4 openEuler-24.03-LTS-SP1 openEuler-22.03-LTS-SP3 openEuler-20.03-LTS-SP4 openEuler-22.03-LTS-SP1 openEuler-24.03-LTS Medium 5.5 AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H sox security update 2025-01-10 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-1020