Format: 1.8 Date: Wed, 01 Mar 2023 10:21:11 +0000 Source: sox Binary: sox libsox3 libsox-fmt-base libsox-fmt-alsa libsox-fmt-ao libsox-fmt-mp3 libsox-fmt-oss libsox-fmt-pulse libsox-fmt-all libsox-dev Architecture: arm64 Version: 14.4.2-3ubuntu0.18.04.2 Distribution: bionic Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Amir Naseredini Description: libsox-dev - Development files for the SoX library libsox-fmt-all - All SoX format libraries libsox-fmt-alsa - SoX alsa format I/O library libsox-fmt-ao - SoX Libao format I/O library libsox-fmt-base - Minimal set of SoX format libraries libsox-fmt-mp3 - SoX MP2 and MP3 format library libsox-fmt-oss - SoX OSS format I/O library libsox-fmt-pulse - SoX PulseAudio format I/O library libsox3 - SoX library of audio effects and processing sox - Swiss army knife of sound processing Changes: sox (14.4.2-3ubuntu0.18.04.2) bionic-security; urgency=medium . * SECURITY UPDATE: Denial of Service - debian/patches/CVE-2019-13590.patch: fixed a possible buffer overflow in startread function. - debian/patches/CVE-2021-23159.patch: fixed a possible buffer overflow in lsx_read_w_buf function (CVE-2021-23159) and in startread function (CVE-2021-23172) - debian/patches/CVE-2021-33844.patch: fixed a possible division by zero in startread function - debian/patches/CVE-2021-3643.patch: fixed a possible buffer overflow (CVE-2021-3643) and a possible division by zero (CVE-2021-23210) in voc component - debian/patches/CVE-2021-40426.patch: fixed a possible buffer overflow in start_read function - debian/patches/CVE-2022-31650.patch: fixed a possible floating-point exception in lsx_aiffstartwrite function - debian/patches/CVE-2022-31651.patch: fixed a possible assertion failure in rate_init function - debian/patches/fix-hcom-big-endian.patch: fixed a possible assertion failure in hcom component - debian/patches/fix-resource-leak-comments.patch: fixed a possible unexpected behaviour on input parsing failure in formats component - debian/patches/fix-resource-leak-hcom.patch: fixed a possible unexpected behaviour on failure in hcom component - CVE-2019-13590 - CVE-2021-23159 - CVE-2021-23172 - CVE-2021-33844 - CVE-2021-3643 - CVE-2021-23210 - CVE-2021-40426 - CVE-2022-31650 - CVE-2022-31651 * SECURITY UPDATE: Regression - debian/patches/CVE-2017-11358-revised.patch: fixed a regression caused by another patch. - CVE-2017-11358 Checksums-Sha1: 21855383f6d567b1f438e76a881607c561a616c3 283244 libsox-dev_14.4.2-3ubuntu0.18.04.2_arm64.deb 69792c7646d5e372bd167308ff61db657b4b5bd1 5136 libsox-fmt-all_14.4.2-3ubuntu0.18.04.2_arm64.deb 3f88441012daff6a9eaf5a5a59467053b40709cc 14340 libsox-fmt-alsa-dbgsym_14.4.2-3ubuntu0.18.04.2_arm64.ddeb 705225a196a67eeaa2f11637abdca65bf9af6f82 10076 libsox-fmt-alsa_14.4.2-3ubuntu0.18.04.2_arm64.deb 4679770cf2232bc377fb286f5071d377c6888514 7584 libsox-fmt-ao-dbgsym_14.4.2-3ubuntu0.18.04.2_arm64.ddeb f50588f8459938519b280aeacc4c9f47c12080a7 7320 libsox-fmt-ao_14.4.2-3ubuntu0.18.04.2_arm64.deb de973404f1ab65f5efb2badca8b1b5dcb785baf5 160004 libsox-fmt-base-dbgsym_14.4.2-3ubuntu0.18.04.2_arm64.ddeb bd3d04e4f4a7e92da3e64033cb7d0bb99ef6c01a 28328 libsox-fmt-base_14.4.2-3ubuntu0.18.04.2_arm64.deb b6870eb775f9901b8d9c9e83e7266206c411ecde 24924 libsox-fmt-mp3-dbgsym_14.4.2-3ubuntu0.18.04.2_arm64.ddeb 141e604ecea9ec540f469044afa31a690238505c 15144 libsox-fmt-mp3_14.4.2-3ubuntu0.18.04.2_arm64.deb 752b6399bc5ee8a441957b195cd95d539137be23 9580 libsox-fmt-oss-dbgsym_14.4.2-3ubuntu0.18.04.2_arm64.ddeb 1e575a1d2bef317d7f923430454a1c91f6e86c5f 8676 libsox-fmt-oss_14.4.2-3ubuntu0.18.04.2_arm64.deb 4fe06c69101c31600580273674e5b5d3a7c15d08 7848 libsox-fmt-pulse-dbgsym_14.4.2-3ubuntu0.18.04.2_arm64.ddeb 27455d7a2a8d735de63516919a68e7f1eb053718 7212 libsox-fmt-pulse_14.4.2-3ubuntu0.18.04.2_arm64.deb 3a4bc5b5c0b36b63b91090509e1c939f1d9ec35a 494412 libsox3-dbgsym_14.4.2-3ubuntu0.18.04.2_arm64.ddeb 8044941a8647be01d04843211de97267d826bf95 193216 libsox3_14.4.2-3ubuntu0.18.04.2_arm64.deb d8754dc9ba0dcff5da786543d96083445bcfd73c 47532 sox-dbgsym_14.4.2-3ubuntu0.18.04.2_arm64.ddeb b6035d2df38123b002bae02b73d92eb9487ec7e9 13262 sox_14.4.2-3ubuntu0.18.04.2_arm64.buildinfo 1e826f6ec01925d7933be556060d741e4741741c 97336 sox_14.4.2-3ubuntu0.18.04.2_arm64.deb Checksums-Sha256: 343033b8b565654c7c85a9ba81ebfd6323c55d181ca2af0dd1c669d7264ce4ee 283244 libsox-dev_14.4.2-3ubuntu0.18.04.2_arm64.deb cfa8a3289d43f4d61e7baace0cb03412c09a65cb7954aafd862d48c15cff36b0 5136 libsox-fmt-all_14.4.2-3ubuntu0.18.04.2_arm64.deb 8386be69f158f95681653d4013c9e927f06439b9c13cc4855eea393ba5d123b9 14340 libsox-fmt-alsa-dbgsym_14.4.2-3ubuntu0.18.04.2_arm64.ddeb 259a49cc3799a823cdd9a01b7d2b3a7ffdde2cd5314e72a37a2748293c845847 10076 libsox-fmt-alsa_14.4.2-3ubuntu0.18.04.2_arm64.deb 96dea686993f0768e1fcefbe2c299000af8b755b69f76a8adb56ed952736629f 7584 libsox-fmt-ao-dbgsym_14.4.2-3ubuntu0.18.04.2_arm64.ddeb ae6f69daf5dbafdd867fa622c28c69cd6a71c7ff3c8cc55c0c9b963ef50dd27a 7320 libsox-fmt-ao_14.4.2-3ubuntu0.18.04.2_arm64.deb d05c86b2db0e961498a729d7ad7da46dc6f196b1b05891fa495c06a619df4de9 160004 libsox-fmt-base-dbgsym_14.4.2-3ubuntu0.18.04.2_arm64.ddeb bcae0f0f9aa1a5d5f0c2e4ded73a3663386d5b8dcecb5ac2185faff5b081ca15 28328 libsox-fmt-base_14.4.2-3ubuntu0.18.04.2_arm64.deb 2f24ee8406ff81e7bf334c49ca4069bf0334ca993f1d8314ab962e33a8f07cef 24924 libsox-fmt-mp3-dbgsym_14.4.2-3ubuntu0.18.04.2_arm64.ddeb c6234e073315232a4a1e1422c0f9553488558476a6cf4107169294cdd9320fc8 15144 libsox-fmt-mp3_14.4.2-3ubuntu0.18.04.2_arm64.deb 0a2d7733b2a78a98cd18b83ac76bf73f762cc609c54a5d38dde768f3952a8fdf 9580 libsox-fmt-oss-dbgsym_14.4.2-3ubuntu0.18.04.2_arm64.ddeb 34fabea8cfc0c8ae8677f9e4630c3dbafb8b23a3dfebb849f13473b4928e8b70 8676 libsox-fmt-oss_14.4.2-3ubuntu0.18.04.2_arm64.deb 49661c4db810c5b32ed8348175e17981d66f970f9c5e48a831ed17a3bd7ccee2 7848 libsox-fmt-pulse-dbgsym_14.4.2-3ubuntu0.18.04.2_arm64.ddeb 16dce5c84b7197d481cad1e166fc5e4158c34dea01158c27c62fe697be280b94 7212 libsox-fmt-pulse_14.4.2-3ubuntu0.18.04.2_arm64.deb ed677b1f29c23acb3bf4250f22acf5b98fec8a1584b244d9c1b3c87011804a55 494412 libsox3-dbgsym_14.4.2-3ubuntu0.18.04.2_arm64.ddeb 79d13b58e1ecf24647b427ed02e189bfd19902e98d9ca2eef6aee0c0d97552a6 193216 libsox3_14.4.2-3ubuntu0.18.04.2_arm64.deb fe02ae65c6fed5b4e8f35cee84443892f63daa3d105ec34d2356d0fc4889936b 47532 sox-dbgsym_14.4.2-3ubuntu0.18.04.2_arm64.ddeb 88bc72d89348a9d35782301a50d5ffb4e2755d21a724f64829415d2adb65ea4e 13262 sox_14.4.2-3ubuntu0.18.04.2_arm64.buildinfo e8e696e8f9fd5dcb24390eef88c7cc58e2a98aef1255e7e690bcff21d044f055 97336 sox_14.4.2-3ubuntu0.18.04.2_arm64.deb Files: b261f239670310ac701ac56fe8640c46 283244 libdevel optional libsox-dev_14.4.2-3ubuntu0.18.04.2_arm64.deb 8425f64ca176f9df6d95b7aac0abe066 5136 libs optional libsox-fmt-all_14.4.2-3ubuntu0.18.04.2_arm64.deb 7835051f62032f659674868622ba3ac5 14340 debug optional libsox-fmt-alsa-dbgsym_14.4.2-3ubuntu0.18.04.2_arm64.ddeb ec04973270537eb29b1aed89f07651ff 10076 libs optional libsox-fmt-alsa_14.4.2-3ubuntu0.18.04.2_arm64.deb 6df61447cc2e60dbeb67e35179102914 7584 debug optional libsox-fmt-ao-dbgsym_14.4.2-3ubuntu0.18.04.2_arm64.ddeb 9460596f8b98df228e0ed726ac83311d 7320 libs optional libsox-fmt-ao_14.4.2-3ubuntu0.18.04.2_arm64.deb cd05bafcccf11adabe4e3dbff5214c13 160004 debug optional libsox-fmt-base-dbgsym_14.4.2-3ubuntu0.18.04.2_arm64.ddeb 76b66d9d5921e105bed861d07a1699ad 28328 libs optional libsox-fmt-base_14.4.2-3ubuntu0.18.04.2_arm64.deb 32a7adefe67f50f11970830e6f42092c 24924 debug optional libsox-fmt-mp3-dbgsym_14.4.2-3ubuntu0.18.04.2_arm64.ddeb 4f3491775bcc7077674c0ba16a9e3fc6 15144 libs optional libsox-fmt-mp3_14.4.2-3ubuntu0.18.04.2_arm64.deb b0bc6886e663a311d66f3670953ecace 9580 debug optional libsox-fmt-oss-dbgsym_14.4.2-3ubuntu0.18.04.2_arm64.ddeb 7e6005588c0213a0430eb626dea19e9c 8676 libs optional libsox-fmt-oss_14.4.2-3ubuntu0.18.04.2_arm64.deb f301512b65ab0bc55d64d9956763f13f 7848 debug optional libsox-fmt-pulse-dbgsym_14.4.2-3ubuntu0.18.04.2_arm64.ddeb ac351ddc8b50691c2d4dbd7abf7ce8f9 7212 libs optional libsox-fmt-pulse_14.4.2-3ubuntu0.18.04.2_arm64.deb 6bb2317e1264e046b7a72ba2acaacbcb 494412 debug optional libsox3-dbgsym_14.4.2-3ubuntu0.18.04.2_arm64.ddeb 34706ef1d51a6c838434460dc4403db4 193216 libs optional libsox3_14.4.2-3ubuntu0.18.04.2_arm64.deb 283a5a09da3032662fec9f64d365309a 47532 debug optional sox-dbgsym_14.4.2-3ubuntu0.18.04.2_arm64.ddeb 5af460fd8e4ec9b2c0717d18df85ef80 13262 sound optional sox_14.4.2-3ubuntu0.18.04.2_arm64.buildinfo 766a26bb2dcf8fde40061f5c1d4944e8 97336 sound optional sox_14.4.2-3ubuntu0.18.04.2_arm64.deb Original-Maintainer: Debian Multimedia Maintainers