CVE-2017-18189NULL Pointer Dereference in Exchange Project Sound Exchange

CWE-476NULL Pointer DereferenceCWE-119Improper Restriction of Operations within the Bounds of a Memory BufferCWE-125Out-of-bounds ReadCWE-400Uncontrolled Resource Consumption14 documents7 sources
Severity
7.5HIGHNVD
NVD5.5
EPSS
6.6%
top 8.83%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Sourceforge SOX Sound ExchangeSound Exchange Project Sound ExchangeDebian Linux
Timeline
PublishedFeb 15
Latest updateMay 24

Description

In the startread function in xa.c in Sound eXchange (SoX) through 14.4.2, a corrupt header specifying zero channels triggers an infinite loop with a resultant NULL pointer dereference, which may allow a remote attacker to cause a denial-of-service.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages3 packages

Debiansourceforge/sox_sound_exchange< 14.4.2-2+2
CVEListV5sourceforge/sox_sound_exchange≤ 14.4.2

Also affects: Debian Linux 8.0

🔴Vulnerability Details

6
GHSA
GHSA-4xr6-8qpq-x858: SoX - Sound eXchange 142022-05-24
GHSA
GHSA-7cwr-p3p4-jp5x: In the startread function in xa2022-05-13
OSV
CVE-2019-1010004: SoX - Sound eXchange 142019-07-15
CVEList
CVE-2019-1010004: SoX - Sound eXchange 142019-07-15
OSV
CVE-2017-18189: In the startread function in xa2018-02-15

📋Vendor Advisories

4
Red Hat
sox: OOB read in function read_samples in xa.c:219 causing denial of service2019-07-14
Debian
CVE-2019-1010004: sox - SoX - Sound eXchange 14.4.2 and earlier is affected by: Out-of-bounds Read. The ...2019
Red Hat
sox: NULL pointer dereference in startread function in xa.c2018-02-15
Debian
CVE-2017-18189: sox - In the startread function in xa.c in Sound eXchange (SoX) through 14.4.2, a corr...2017

💬Community

2
Bugzilla
CVE-2017-18189 sox: NULL pointer dereference in startread function in xa.c2018-02-15
Bugzilla
CVE-2017-18189 sox: Null pointer dereference in startread function in xa.c [fedora-all]2018-02-15
CVE-2017-18189 — NULL Pointer Dereference | cvebase