CVE-2022-50798

Name
CVE-2022-50798
Description
This candidate is a duplicate of CVE-2017-11359.
NVD Severity
unknown
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
product http://sox.sourceforge.net
product https://en.wikipedia.org/wiki/SoX
exploit https://www.exploit-db.com/exploits/51034
third-party-advisory https://www.vulncheck.com/advisories/sox-denial-of-service-vulnerability-via-wav-file-processing
third-party-advisory https://www.zeroscience.mk/en/vulnerabilities/ZSL-2022-5712.php

Match rules

CPE URI Source package Min version Max version

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
sox edge-community 14.4.2-r14 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
sox edge-community 14.4.2-r13 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
sox edge-community 14.4.2-r12 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
sox edge-community 14.4.2-r11 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
sox edge-community 14.4.2-r10 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
sox edge-community 14.4.2-r5 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
sox 3.23-community 14.4.2-r14 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable