What the vulnerability does

01Description

A vulnerability was found in SoX, where a heap-buffer-overflow occurs in function lsx_read_w_buf() in formats_i.c file. The vulnerability is exploitable with a crafted file, that could cause an application to crash.

Key dates

02Disclosure timeline

August 25, 2022 CVE published
August 3, 2024 Record updated