This page displays vulnerability information about FreeBSD Ports.
The VUXML data was last processed by FreshPorts on 2024-04-23 14:57:51 UTC
List all Vulnerabilities, by package
List all Vulnerabilities, by date
k68These are the vulnerabilities relating to the commit you have selected:
VuXML ID | Description |
---|---|
92cda470-30cb-11e5-a4a5-002590263bf5 | sox -- input sanitization errors oCERT reports:
Discovery 2014-11-20 Entry 2015-07-23 sox < 14.4.2 71774 CVE-2014-8145 http://www.ocert.org/advisories/ocert-2014-010.html |
3e4ffe76-e0d4-11d8-9b0a-000347a4fa7d | SoX buffer overflows when handling .WAV files Ulf Härnhammar discovered a pair of buffer overflows in the WAV file handling code of SoX. If an attacker can cause her victim to process a specially-crafted WAV file with SoX (e.g. through social engineering or through some other program that relies on SoX), arbitrary code can be executed with the privileges of the victim. Discovery 2004-07-28 Entry 2004-08-26 sox gt 12.17.1 le 12.17.4_1 CVE-2004-0557 http://archives.neohapsis.com/archives/vulnwatch/2004-q3/0014.html http://secunia.com/advisories/12175 http://www.osvdb.org/8267 |
9dd761ff-30cb-11e5-a4a5-002590263bf5 | sox -- memory corruption vulnerabilities Michele Spagnuolo, Google Security Team, reports:
Discovery 2015-07-22 Entry 2015-07-23 sox le 14.4.2 http://seclists.org/oss-sec/2015/q3/167 |