CVE-2021-23159

Summary

A vulnerability was found in SoX, where a heap-buffer-overflow occurs in function lsx_read_w_buf() in formats_i.c file. The vulnerability is exploitable with a crafted file, that could cause an application to crash.

Affected Software

VendorProductVersion RangeStatus
n/aSoX (Sound eXchange)Not Knownaffected

Weaknesses

  • CWE-120: CWE-120 - Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

ADP Enrichment

CVE Program Container

Additional References

References