Publishing details

• Published on 2019-01-31
• Copied from ubuntu trusty in PPA for Ubuntu Security Proposed by Ubuntu Archive Robot

Changelog

sox (14.4.1-3ubuntu1.1) trusty-security; urgency=medium

  * SECURITY UPDATE: Buffer overflow
    - debian/patches/0001-Check-for-minimum-size-sphere-headers.patch: Avoid
      integer underflow by validating the header_size_ul for NIST sphere
      formatted media files.
    - debian/patches/0002-More-checks-for-invalid-MS-ADPCM-blocks.patch: Check
      the number of samples in a wav block against the expected samples per
      block.
    - CVE-2014-8145
  * SECURITY UPDATE: Division by zero
    - debian/patches/CVE-2017-11332.patch: wav: fix crash if channel count is
      zero
    - CVE-2017-11332
  * SECURITY UPDATE: Division by zero
    - debian/patches/CVE-2017-11358.patch: hcom: fix crash on input with
      corrupt dictionary
    - CVE-2017-11358
  * SECURITY UPDATE: Invalid memory read
    - debian/patches/CVE-2017-11359.patch: wav: fix crash writing header when
      channel count >64k
    - CVE-2017-11359
  * SECURITY UPDATE: Buffer overflow
    - debian/patches/CVE-2017-15370.patch: wav: ima_adpcm: fix buffer overflow
      on corrupt input
    - CVE-2017-15370
  * SECURITY UPDATE: Buffer overflow
    - debian/patches/CVE-2017-15371.patch: flac: fix crash on corrupt metadata
    - CVE-2017-15371
  * SECURITY UPDATE: Buffer overflow
    - debian/patches/CVE-2017-15372.patch: adpcm: fix stack overflow with >4
      channels
    - CVE-2017-15372
  * SECURITY UPDATE: Use after free
    - debian/patches/CVE-2017-15642.patch: adpcm: fix a user after free and
      double free if an empty comment chunk follows a non-empty one.
    - CVE-2017-15642
  * SECURITY UPDATE: NULL pointer dereference
    - debian/patches/CVE-2017-18189.patch: Prevent infinite loop caused by
        specifying zero channels in a header. Also add an upper bound to prevent
        overflow in multiplication
    - CVE-2017-18189

 -- Mike Salvatore <email address hidden>  Thu, 31 Jan 2019 11:22:54 -0500

Builds

• amd64
• arm64
• armhf
• i386
• powerpc
• ppc64el

Built packages

• libsox-dev Development files for the SoX library

• libsox-fmt-all All SoX format libraries

• libsox-fmt-alsa SoX alsa format I/O library

• libsox-fmt-alsa-dbgsym debug symbols for package libsox-fmt-alsa

• libsox-fmt-ao SoX Libao format I/O library

• libsox-fmt-ao-dbgsym debug symbols for package libsox-fmt-ao

• libsox-fmt-base Minimal set of SoX format libraries

• libsox-fmt-base-dbgsym debug symbols for package libsox-fmt-base

• libsox-fmt-mp3 SoX MP2 and MP3 format library

• libsox-fmt-mp3-dbgsym debug symbols for package libsox-fmt-mp3

• libsox-fmt-oss SoX OSS format I/O library

• libsox-fmt-oss-dbgsym debug symbols for package libsox-fmt-oss

• libsox-fmt-pulse SoX PulseAudio format I/O library

• libsox-fmt-pulse-dbgsym debug symbols for package libsox-fmt-pulse

• libsox2 SoX library of audio effects and processing

• libsox2-dbgsym debug symbols for package libsox2

• sox Swiss army knife of sound processing

• sox-dbgsym debug symbols for package sox

Package files

• libsox-dev_14.4.1-3ubuntu1.1_amd64.deb (298.5 KiB)
• libsox-dev_14.4.1-3ubuntu1.1_arm64.deb (273.2 KiB)
• libsox-dev_14.4.1-3ubuntu1.1_armhf.deb (270.0 KiB)
• libsox-dev_14.4.1-3ubuntu1.1_i386.deb (283.9 KiB)
• libsox-dev_14.4.1-3ubuntu1.1_powerpc.deb (300.2 KiB)
• libsox-dev_14.4.1-3ubuntu1.1_ppc64el.deb (336.6 KiB)
• libsox-fmt-all_14.4.1-3ubuntu1.1_amd64.deb (1.7 KiB)
• libsox-fmt-all_14.4.1-3ubuntu1.1_arm64.deb (1.7 KiB)
• libsox-fmt-all_14.4.1-3ubuntu1.1_armhf.deb (1.7 KiB)
• libsox-fmt-all_14.4.1-3ubuntu1.1_i386.deb (1.7 KiB)
• libsox-fmt-all_14.4.1-3ubuntu1.1_powerpc.deb (1.7 KiB)
• libsox-fmt-all_14.4.1-3ubuntu1.1_ppc64el.deb (1.7 KiB)
• libsox-fmt-alsa-dbgsym_14.4.1-3ubuntu1.1_amd64.ddeb (11.9 KiB)
• libsox-fmt-alsa-dbgsym_14.4.1-3ubuntu1.1_arm64.ddeb (11.9 KiB)
• libsox-fmt-alsa-dbgsym_14.4.1-3ubuntu1.1_armhf.ddeb (11.6 KiB)
• libsox-fmt-alsa-dbgsym_14.4.1-3ubuntu1.1_i386.ddeb (11.7 KiB)
• libsox-fmt-alsa-dbgsym_14.4.1-3ubuntu1.1_powerpc.ddeb (11.5 KiB)
• libsox-fmt-alsa-dbgsym_14.4.1-3ubuntu1.1_ppc64el.ddeb (13.4 KiB)
• libsox-fmt-alsa_14.4.1-3ubuntu1.1_amd64.deb (6.9 KiB)
• libsox-fmt-alsa_14.4.1-3ubuntu1.1_arm64.deb (6.5 KiB)
• libsox-fmt-alsa_14.4.1-3ubuntu1.1_armhf.deb (7.7 KiB)
• libsox-fmt-alsa_14.4.1-3ubuntu1.1_i386.deb (7.2 KiB)
• libsox-fmt-alsa_14.4.1-3ubuntu1.1_powerpc.deb (7.6 KiB)
• libsox-fmt-alsa_14.4.1-3ubuntu1.1_ppc64el.deb (8.5 KiB)
• libsox-fmt-ao-dbgsym_14.4.1-3ubuntu1.1_amd64.ddeb (6.5 KiB)
• libsox-fmt-ao-dbgsym_14.4.1-3ubuntu1.1_arm64.ddeb (6.8 KiB)
• libsox-fmt-ao-dbgsym_14.4.1-3ubuntu1.1_armhf.ddeb (6.8 KiB)
• libsox-fmt-ao-dbgsym_14.4.1-3ubuntu1.1_i386.ddeb (6.4 KiB)
• libsox-fmt-ao-dbgsym_14.4.1-3ubuntu1.1_powerpc.ddeb (6.6 KiB)
• libsox-fmt-ao-dbgsym_14.4.1-3ubuntu1.1_ppc64el.ddeb (6.9 KiB)
• libsox-fmt-ao_14.4.1-3ubuntu1.1_amd64.deb (4.0 KiB)
• libsox-fmt-ao_14.4.1-3ubuntu1.1_arm64.deb (3.9 KiB)
• libsox-fmt-ao_14.4.1-3ubuntu1.1_armhf.deb (4.0 KiB)
• libsox-fmt-ao_14.4.1-3ubuntu1.1_i386.deb (4.1 KiB)
• libsox-fmt-ao_14.4.1-3ubuntu1.1_powerpc.deb (4.0 KiB)
• libsox-fmt-ao_14.4.1-3ubuntu1.1_ppc64el.deb (4.2 KiB)
• libsox-fmt-base-dbgsym_14.4.1-3ubuntu1.1_amd64.ddeb (60.4 KiB)
• libsox-fmt-base-dbgsym_14.4.1-3ubuntu1.1_arm64.ddeb (62.9 KiB)
• libsox-fmt-base-dbgsym_14.4.1-3ubuntu1.1_armhf.ddeb (61.4 KiB)
• libsox-fmt-base-dbgsym_14.4.1-3ubuntu1.1_i386.ddeb (57.6 KiB)
• libsox-fmt-base-dbgsym_14.4.1-3ubuntu1.1_powerpc.ddeb (62.6 KiB)
• libsox-fmt-base-dbgsym_14.4.1-3ubuntu1.1_ppc64el.ddeb (64.6 KiB)
• libsox-fmt-base_14.4.1-3ubuntu1.1_amd64.deb (27.8 KiB)
• libsox-fmt-base_14.4.1-3ubuntu1.1_arm64.deb (23.1 KiB)
• libsox-fmt-base_14.4.1-3ubuntu1.1_armhf.deb (25.0 KiB)
• libsox-fmt-base_14.4.1-3ubuntu1.1_i386.deb (27.5 KiB)
• libsox-fmt-base_14.4.1-3ubuntu1.1_powerpc.deb (27.1 KiB)
• libsox-fmt-base_14.4.1-3ubuntu1.1_ppc64el.deb (26.8 KiB)
• libsox-fmt-mp3-dbgsym_14.4.1-3ubuntu1.1_amd64.ddeb (20.4 KiB)
• libsox-fmt-mp3-dbgsym_14.4.1-3ubuntu1.1_arm64.ddeb (20.9 KiB)
• libsox-fmt-mp3-dbgsym_14.4.1-3ubuntu1.1_armhf.ddeb (20.7 KiB)
• libsox-fmt-mp3-dbgsym_14.4.1-3ubuntu1.1_i386.ddeb (20.2 KiB)
• libsox-fmt-mp3-dbgsym_14.4.1-3ubuntu1.1_powerpc.ddeb (20.6 KiB)
• libsox-fmt-mp3-dbgsym_14.4.1-3ubuntu1.1_ppc64el.ddeb (21.6 KiB)
• libsox-fmt-mp3_14.4.1-3ubuntu1.1_amd64.deb (11.9 KiB)
• libsox-fmt-mp3_14.4.1-3ubuntu1.1_arm64.deb (10.9 KiB)
• libsox-fmt-mp3_14.4.1-3ubuntu1.1_armhf.deb (13.0 KiB)
• libsox-fmt-mp3_14.4.1-3ubuntu1.1_i386.deb (12.4 KiB)
• libsox-fmt-mp3_14.4.1-3ubuntu1.1_powerpc.deb (13.2 KiB)
• libsox-fmt-mp3_14.4.1-3ubuntu1.1_ppc64el.deb (12.1 KiB)
• libsox-fmt-oss-dbgsym_14.4.1-3ubuntu1.1_amd64.ddeb (6.1 KiB)
• libsox-fmt-oss-dbgsym_14.4.1-3ubuntu1.1_arm64.ddeb (6.4 KiB)
• libsox-fmt-oss-dbgsym_14.4.1-3ubuntu1.1_armhf.ddeb (6.2 KiB)
• libsox-fmt-oss-dbgsym_14.4.1-3ubuntu1.1_i386.ddeb (6.0 KiB)
• libsox-fmt-oss-dbgsym_14.4.1-3ubuntu1.1_powerpc.ddeb (6.2 KiB)
• libsox-fmt-oss-dbgsym_14.4.1-3ubuntu1.1_ppc64el.ddeb (6.4 KiB)
• libsox-fmt-oss_14.4.1-3ubuntu1.1_amd64.deb (4.5 KiB)
• libsox-fmt-oss_14.4.1-3ubuntu1.1_arm64.deb (4.2 KiB)
• libsox-fmt-oss_14.4.1-3ubuntu1.1_armhf.deb (4.3 KiB)
• libsox-fmt-oss_14.4.1-3ubuntu1.1_i386.deb (4.4 KiB)
• libsox-fmt-oss_14.4.1-3ubuntu1.1_powerpc.deb (4.5 KiB)
• libsox-fmt-oss_14.4.1-3ubuntu1.1_ppc64el.deb (4.6 KiB)
• libsox-fmt-pulse-dbgsym_14.4.1-3ubuntu1.1_amd64.ddeb (6.9 KiB)
• libsox-fmt-pulse-dbgsym_14.4.1-3ubuntu1.1_arm64.ddeb (7.1 KiB)
• libsox-fmt-pulse-dbgsym_14.4.1-3ubuntu1.1_armhf.ddeb (7.1 KiB)
• libsox-fmt-pulse-dbgsym_14.4.1-3ubuntu1.1_i386.ddeb (6.6 KiB)
• libsox-fmt-pulse-dbgsym_14.4.1-3ubuntu1.1_powerpc.ddeb (7.0 KiB)
• libsox-fmt-pulse-dbgsym_14.4.1-3ubuntu1.1_ppc64el.ddeb (7.3 KiB)
• libsox-fmt-pulse_14.4.1-3ubuntu1.1_amd64.deb (3.9 KiB)
• libsox-fmt-pulse_14.4.1-3ubuntu1.1_arm64.deb (3.7 KiB)
• libsox-fmt-pulse_14.4.1-3ubuntu1.1_armhf.deb (3.7 KiB)
• libsox-fmt-pulse_14.4.1-3ubuntu1.1_i386.deb (4.0 KiB)
• libsox-fmt-pulse_14.4.1-3ubuntu1.1_powerpc.deb (3.9 KiB)
• libsox-fmt-pulse_14.4.1-3ubuntu1.1_ppc64el.deb (4.0 KiB)
• libsox2-dbgsym_14.4.1-3ubuntu1.1_amd64.ddeb (349.5 KiB)
• libsox2-dbgsym_14.4.1-3ubuntu1.1_arm64.ddeb (351.6 KiB)
• libsox2-dbgsym_14.4.1-3ubuntu1.1_armhf.ddeb (339.8 KiB)
• libsox2-dbgsym_14.4.1-3ubuntu1.1_i386.ddeb (340.0 KiB)
• libsox2-dbgsym_14.4.1-3ubuntu1.1_powerpc.ddeb (339.2 KiB)
• libsox2-dbgsym_14.4.1-3ubuntu1.1_ppc64el.ddeb (384.7 KiB)
• libsox2_14.4.1-3ubuntu1.1_amd64.deb (215.5 KiB)
• libsox2_14.4.1-3ubuntu1.1_arm64.deb (184.7 KiB)
• libsox2_14.4.1-3ubuntu1.1_armhf.deb (189.3 KiB)
• libsox2_14.4.1-3ubuntu1.1_i386.deb (209.5 KiB)
• libsox2_14.4.1-3ubuntu1.1_powerpc.deb (211.7 KiB)
• libsox2_14.4.1-3ubuntu1.1_ppc64el.deb (234.3 KiB)
• sox-dbgsym_14.4.1-3ubuntu1.1_amd64.ddeb (40.5 KiB)
• sox-dbgsym_14.4.1-3ubuntu1.1_arm64.ddeb (41.8 KiB)
• sox-dbgsym_14.4.1-3ubuntu1.1_armhf.ddeb (40.4 KiB)
• sox-dbgsym_14.4.1-3ubuntu1.1_i386.ddeb (39.4 KiB)
• sox-dbgsym_14.4.1-3ubuntu1.1_powerpc.ddeb (39.6 KiB)
• sox-dbgsym_14.4.1-3ubuntu1.1_ppc64el.ddeb (45.8 KiB)
• sox_14.4.1-3ubuntu1.1.debian.tar.gz (18.4 KiB)
• sox_14.4.1-3ubuntu1.1.dsc (2.7 KiB)
• sox_14.4.1-3ubuntu1.1_amd64.deb (94.8 KiB)
• sox_14.4.1-3ubuntu1.1_arm64.deb (92.4 KiB)
• sox_14.4.1-3ubuntu1.1_armhf.deb (94.1 KiB)
• sox_14.4.1-3ubuntu1.1_i386.deb (94.2 KiB)
• sox_14.4.1-3ubuntu1.1_powerpc.deb (94.3 KiB)
• sox_14.4.1-3ubuntu1.1_ppc64el.deb (95.5 KiB)
• sox_14.4.1.orig.tar.gz (1.1 MiB)