Multiple heap-based buffer overflows in Sound eXchange (SoX) 14.4.1 and earlier allow remote attackers to have unspecified impact via a crafted WAV file to the (1) start_read or (2) AdpcmReadBlock function.
History

Sat, 12 Jul 2025 13:45:00 +0000

Type Values Removed Values Added
Metrics epss

{'score': 0.16284}

epss

{'score': 0.12998}


cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2014-12-31T22:00:00

Updated: 2024-08-06T13:10:50.932Z

Reserved: 2014-10-10T00:00:00

Link: CVE-2014-8145

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Deferred

Published: 2014-12-31T22:59:03.617

Modified: 2025-04-12T10:46:40.837

Link: CVE-2014-8145

cve-icon Redhat

Severity : Moderate

Publid Date: 2014-12-22T00:00:00Z

Links: CVE-2014-8145 - Bugzilla