sox 14.4.2-3ubuntu0.18.04.2 source package in Ubuntu
Changelog
sox (14.4.2-3ubuntu0.18.04.2) bionic-security; urgency=medium
* SECURITY UPDATE: Denial of Service
- debian/patches/CVE-2019-13590.patch: fixed a possible buffer overflow
in startread function.
- debian/patches/CVE-2021-23159.patch: fixed a possible buffer overflow
in lsx_read_w_buf function (CVE-2021-23159) and in startread function
(CVE-2021-23172)
- debian/patches/CVE-2021-33844.patch: fixed a possible division by zero
in startread function
- debian/patches/CVE-2021-3643.patch: fixed a possible buffer overflow
(CVE-2021-3643) and a possible division by zero (CVE-2021-23210) in
voc component
- debian/patches/CVE-2021-40426.patch: fixed a possible buffer overflow
in start_read function
- debian/patches/CVE-2022-31650.patch: fixed a possible floating-point
exception in lsx_aiffstartwrite function
- debian/patches/CVE-2022-31651.patch: fixed a possible assertion failure
in rate_init function
- debian/patches/fix-hcom-big-endian.patch: fixed a possible assertion
failure in hcom component
- debian/patches/fix-resource-leak-comments.patch: fixed a possible
unexpected behaviour on input parsing failure in formats component
- debian/patches/fix-resource-leak-hcom.patch: fixed a possible
unexpected behaviour on failure in hcom component
- CVE-2019-13590
- CVE-2021-23159
- CVE-2021-23172
- CVE-2021-33844
- CVE-2021-3643
- CVE-2021-23210
- CVE-2021-40426
- CVE-2022-31650
- CVE-2022-31651
* SECURITY UPDATE: Regression
- debian/patches/CVE-2017-11358-revised.patch: fixed a regression caused
by another patch.
- CVE-2017-11358
-- Amir Naseredini <email address hidden> Wed, 01 Mar 2023 10:21:11 +0000
Upload details
- Uploaded by:
- Amir Naseredini
- Uploaded to:
- Bionic
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any
- Section:
- sound
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| sox_14.4.2.orig.tar.bz2 | 913.5 KiB | 81a6956d4330e75b5827316e44ae381e6f1e8928003c6aa45896da9041ea149c |
| sox_14.4.2-3ubuntu0.18.04.2.debian.tar.xz | 27.3 KiB | 1f81e254c42284a28de2f085c39bec91dd16cb49cb24e19b7c2a57a11d5f469b |
| sox_14.4.2-3ubuntu0.18.04.2.dsc | 2.7 KiB | 1d225ff00367d18f731c54f515f095565d701e8294c7f1bf26e98ed7d3f7d010 |
Available diffs
Binary packages built by this source
- libsox-dev: Development files for the SoX library
SoX is the swiss army knife of sound processing.
.
This library allow you to convert various formats of computer audio files
in to other formats. It also allows you to apply
various effects to sound files.
.
This package contains the development files for the SoX library.
- libsox-fmt-all: All SoX format libraries
SoX is the swiss army knife of sound processing.
.
This is a metapackage depending on all free SoX format libraries.
- libsox-fmt-alsa: SoX alsa format I/O library
SoX is the swiss army knife of sound processing.
.
This package contains the SoX alsa format I/O library.
.
alsa: https://www.alsa- project. org/main/ index.php/ Main_Page
- libsox-fmt-alsa-dbgsym: debug symbols for libsox-fmt-alsa
- libsox-fmt-ao: SoX Libao format I/O library
SoX is the swiss army knife of sound processing.
.
This package contains the SoX Libao format I/O library.
.
libao: https://xiph.org/ ao
- libsox-fmt-ao-dbgsym: debug symbols for libsox-fmt-ao
- libsox-fmt-base: Minimal set of SoX format libraries
SoX is the swiss army knife of sound processing.
.
This package contains most audio formats libraries supported by SoX.
Among them: Ogg Vorbis, WAV, AIFF, VOC, SND, AU, GSM, WavPack, LPC10, FLAC,
MATLAB/GNU Octave, Portable Voice Format, AMR and Sound Forge Audio Format.
- libsox-fmt-base-dbgsym: debug symbols for libsox-fmt-base
- libsox-fmt-mp3: SoX MP2 and MP3 format library
SoX is the swiss army knife of sound processing.
.
This package contains the SoX MP2 and MP3 format library.
Read support by libmad. MP2 and MP3 write support by libtwolame and
libmp3lame respectively.
.
libmad: https://www.underbit. com/products/ mad/
lame: https://lame.sourcefor ge.io
- libsox-fmt-mp3-dbgsym: debug symbols for libsox-fmt-mp3
- libsox-fmt-oss: SoX OSS format I/O library
SoX is the swiss army knife of sound processing.
.
This package contains the SoX Open Sound System (OSS)
format I/O library.
.
Open Sound System: http://www.opensound. com/oss. html
- libsox-fmt-oss-dbgsym: debug symbols for libsox-fmt-oss
- libsox-fmt-pulse: SoX PulseAudio format I/O library
SoX is the swiss army knife of sound processing.
.
This package contains the SoX PulseAudio format I/O library.
.
PulseAudio: https://www.freedeskto p.org/wiki/ Software/ PulseAudio/
- libsox-fmt-pulse-dbgsym: debug symbols for libsox-fmt-pulse
- libsox3: SoX library of audio effects and processing
SoX is the swiss army knife of sound processing.
.
This package contains the SoX library which enables to convert various formats
of computer audio files in to other formats. It also allows you to apply
various effects to sound files.
.
Any format support requires at least libsox-fmt-base.
Sound card I/O requires libsox-fmt-alsa, libsox-fmt-ao, libsox-fmt-oss or
libsox-fmt-pulse.
- libsox3-dbgsym: debug symbols for libsox3
- sox: Swiss army knife of sound processing
SoX is a command line utility that can convert various formats of computer
audio files in to other formats. It can also apply various effects to these
sound files during the conversion. As an added bonus, SoX can play and record
audio files on several unix-style platforms.
.
SoX is able to handle formats like Ogg Vorbis, MP3, WAV, AIFF, VOC, SND, AU,
GSM and several more.
Any format support requires at least libsox-fmt-base. Some formats have their
own package e.g. mp3 read and write support is provided by libsox-fmt-mp3.
.
SoX supports most common sound architectures i.e. Alsa, Libao, OSS and Pulse
(respectively provided by libsox-fmt-alsa, libsox-fmt-ao, libsox-fmt-oss and
libsox-fmt-pulse). It also supports LADSPA plugins.
- sox-dbgsym: debug symbols for sox
