Publishing details

• Published on 2019-07-30
• Copied from ubuntu xenial in PPA for Ubuntu Security Proposed by Eduardo Barretto

Changelog

sox (14.4.1-5+deb8u4ubuntu0.1) xenial-security; urgency=medium

  * SECURITY UPDATE: Merge from Debian
    - Fixes:
      - CVE-2019-8354
      - CVE-2019-8356
      - CVE-2019-8357
    - Fixes overwritten by Debian:
      - CVE-2017-11332
      - CVE-2017-11358
      - CVE-2017-11359
      - CVE-2017-15370
      - CVE-2017-15371
      - CVE-2017-15372
      - CVE-2017-15642
      - CVE-2017-18189
    - Ignored Debian's "override_dh_strip" in debian/rules as this change was
      made by mistake

sox (14.4.1-5+deb8u4) jessie-security; urgency=medium

  * Non-maintainer upload by the LTS Team.
  * CVE-2019-8354, CVE-2019-8355: buffer overflow in valloc functions.
  * CVE-2019-8356: stack-based buffer overflow in bitrv2().
  * CVE-2019-8357: NULL pointer dereference in lsx_make_lpf().

sox (14.4.1-5+deb8u3) jessie-security; urgency=high

  * Non-maintainer upload by the LTS Team.
  * CVE-2017-15371: reachable assertion in sox_append_comment() (formats.c)
    (Closes: #878809).
  * CVE-2017-11359: divide-by-zero error wavwritehdr function (wav.c)
    (Closes: #870328).
  * CVE-2017-11332: divide-by-zero error in startread function (wav.c).
  * CVE-2017-11358: invalid memory read in read_samples function (hcom.c).

sox (14.4.1-5+deb8u2) jessie-security; urgency=high

  * Non-maintainer upload by the LTS Team.
  * CVE-2017-15370: heap-based buffer overflow in the ImaExpandS function
    of ima_rw.c (Closes: #878810).
  * CVE-2017-15372: stack-based buffer overflow in the
    lsx_ms_adpcm_block_expand_i function of adpcm.c (Closes: #878808).
  * CVE-2017-18189: null pointer dereference caused by corrupt header
    specifying zero channels, sending read_channels() into an infinite loop
    (Closes: #881121).
  * CVE-2017-15642: use-after-free in output_message, triggered by crafted
    aiff file (Closes: #882144).

sox (14.4.1-5+deb8u1) jessie-security; urgency=medium

  * Non-maintainer upload.
  * Add patches for CVE-2014-8145 to series file and really apply fixes.
    Thanks to Mike Salvatore for spotting the issue. (Closes: #773720)

 -- Eduardo Barretto <email address hidden>  Mon, 29 Jul 2019 11:35:57 -0300

Builds

• amd64
• arm64
• armhf
• i386
• powerpc
• ppc64el
• s390x

Built packages

• libsox-dev Development files for the SoX library

• libsox-fmt-all All SoX format libraries

• libsox-fmt-alsa SoX alsa format I/O library

• libsox-fmt-alsa-dbgsym debug symbols for package libsox-fmt-alsa

• libsox-fmt-ao SoX Libao format I/O library

• libsox-fmt-ao-dbgsym debug symbols for package libsox-fmt-ao

• libsox-fmt-base Minimal set of SoX format libraries

• libsox-fmt-base-dbgsym debug symbols for package libsox-fmt-base

• libsox-fmt-mp3 SoX MP2 and MP3 format library

• libsox-fmt-mp3-dbgsym debug symbols for package libsox-fmt-mp3

• libsox-fmt-oss SoX OSS format I/O library

• libsox-fmt-oss-dbgsym debug symbols for package libsox-fmt-oss

• libsox-fmt-pulse SoX PulseAudio format I/O library

• libsox-fmt-pulse-dbgsym debug symbols for package libsox-fmt-pulse

• libsox2 SoX library of audio effects and processing

• libsox2-dbgsym debug symbols for package libsox2

• sox Swiss army knife of sound processing

• sox-dbgsym debug symbols for package sox

Package files

• libsox-dev_14.4.1-5+deb8u4ubuntu0.1_amd64.deb (304.9 KiB)
• libsox-dev_14.4.1-5+deb8u4ubuntu0.1_arm64.deb (275.4 KiB)
• libsox-dev_14.4.1-5+deb8u4ubuntu0.1_armhf.deb (270.5 KiB)
• libsox-dev_14.4.1-5+deb8u4ubuntu0.1_i386.deb (302.0 KiB)
• libsox-dev_14.4.1-5+deb8u4ubuntu0.1_powerpc.deb (295.1 KiB)
• libsox-dev_14.4.1-5+deb8u4ubuntu0.1_ppc64el.deb (344.0 KiB)
• libsox-dev_14.4.1-5+deb8u4ubuntu0.1_s390x.deb (290.0 KiB)
• libsox-fmt-all_14.4.1-5+deb8u4ubuntu0.1_amd64.deb (1.7 KiB)
• libsox-fmt-all_14.4.1-5+deb8u4ubuntu0.1_arm64.deb (1.7 KiB)
• libsox-fmt-all_14.4.1-5+deb8u4ubuntu0.1_armhf.deb (1.7 KiB)
• libsox-fmt-all_14.4.1-5+deb8u4ubuntu0.1_i386.deb (1.7 KiB)
• libsox-fmt-all_14.4.1-5+deb8u4ubuntu0.1_powerpc.deb (1.7 KiB)
• libsox-fmt-all_14.4.1-5+deb8u4ubuntu0.1_ppc64el.deb (1.7 KiB)
• libsox-fmt-all_14.4.1-5+deb8u4ubuntu0.1_s390x.deb (1.7 KiB)
• libsox-fmt-alsa-dbgsym_14.4.1-5+deb8u4ubuntu0.1_amd64.ddeb (11.2 KiB)
• libsox-fmt-alsa-dbgsym_14.4.1-5+deb8u4ubuntu0.1_arm64.ddeb (11.5 KiB)
• libsox-fmt-alsa-dbgsym_14.4.1-5+deb8u4ubuntu0.1_armhf.ddeb (10.9 KiB)
• libsox-fmt-alsa-dbgsym_14.4.1-5+deb8u4ubuntu0.1_i386.ddeb (10.9 KiB)
• libsox-fmt-alsa-dbgsym_14.4.1-5+deb8u4ubuntu0.1_powerpc.ddeb (10.9 KiB)
• libsox-fmt-alsa-dbgsym_14.4.1-5+deb8u4ubuntu0.1_ppc64el.ddeb (14.4 KiB)
• libsox-fmt-alsa-dbgsym_14.4.1-5+deb8u4ubuntu0.1_s390x.ddeb (10.1 KiB)
• libsox-fmt-alsa_14.4.1-5+deb8u4ubuntu0.1_amd64.deb (7.1 KiB)
• libsox-fmt-alsa_14.4.1-5+deb8u4ubuntu0.1_arm64.deb (6.5 KiB)
• libsox-fmt-alsa_14.4.1-5+deb8u4ubuntu0.1_armhf.deb (6.9 KiB)
• libsox-fmt-alsa_14.4.1-5+deb8u4ubuntu0.1_i386.deb (7.7 KiB)
• libsox-fmt-alsa_14.4.1-5+deb8u4ubuntu0.1_powerpc.deb (7.7 KiB)
• libsox-fmt-alsa_14.4.1-5+deb8u4ubuntu0.1_ppc64el.deb (9.9 KiB)
• libsox-fmt-alsa_14.4.1-5+deb8u4ubuntu0.1_s390x.deb (7.0 KiB)
• libsox-fmt-ao-dbgsym_14.4.1-5+deb8u4ubuntu0.1_amd64.ddeb (6.1 KiB)
• libsox-fmt-ao-dbgsym_14.4.1-5+deb8u4ubuntu0.1_arm64.ddeb (6.4 KiB)
• libsox-fmt-ao-dbgsym_14.4.1-5+deb8u4ubuntu0.1_armhf.ddeb (6.4 KiB)
• libsox-fmt-ao-dbgsym_14.4.1-5+deb8u4ubuntu0.1_i386.ddeb (6.0 KiB)
• libsox-fmt-ao-dbgsym_14.4.1-5+deb8u4ubuntu0.1_powerpc.ddeb (6.2 KiB)
• libsox-fmt-ao-dbgsym_14.4.1-5+deb8u4ubuntu0.1_ppc64el.ddeb (6.5 KiB)
• libsox-fmt-ao-dbgsym_14.4.1-5+deb8u4ubuntu0.1_s390x.ddeb (5.8 KiB)
• libsox-fmt-ao_14.4.1-5+deb8u4ubuntu0.1_amd64.deb (4.0 KiB)
• libsox-fmt-ao_14.4.1-5+deb8u4ubuntu0.1_arm64.deb (3.9 KiB)
• libsox-fmt-ao_14.4.1-5+deb8u4ubuntu0.1_armhf.deb (4.0 KiB)
• libsox-fmt-ao_14.4.1-5+deb8u4ubuntu0.1_i386.deb (4.2 KiB)
• libsox-fmt-ao_14.4.1-5+deb8u4ubuntu0.1_powerpc.deb (4.0 KiB)
• libsox-fmt-ao_14.4.1-5+deb8u4ubuntu0.1_ppc64el.deb (4.2 KiB)
• libsox-fmt-ao_14.4.1-5+deb8u4ubuntu0.1_s390x.deb (4.1 KiB)
• libsox-fmt-base-dbgsym_14.4.1-5+deb8u4ubuntu0.1_amd64.ddeb (57.4 KiB)
• libsox-fmt-base-dbgsym_14.4.1-5+deb8u4ubuntu0.1_arm64.ddeb (59.0 KiB)
• libsox-fmt-base-dbgsym_14.4.1-5+deb8u4ubuntu0.1_armhf.ddeb (57.9 KiB)
• libsox-fmt-base-dbgsym_14.4.1-5+deb8u4ubuntu0.1_i386.ddeb (53.3 KiB)
• libsox-fmt-base-dbgsym_14.4.1-5+deb8u4ubuntu0.1_powerpc.ddeb (58.6 KiB)
• libsox-fmt-base-dbgsym_14.4.1-5+deb8u4ubuntu0.1_ppc64el.ddeb (61.3 KiB)
• libsox-fmt-base-dbgsym_14.4.1-5+deb8u4ubuntu0.1_s390x.ddeb (52.9 KiB)
• libsox-fmt-base_14.4.1-5+deb8u4ubuntu0.1_amd64.deb (28.0 KiB)
• libsox-fmt-base_14.4.1-5+deb8u4ubuntu0.1_arm64.deb (23.3 KiB)
• libsox-fmt-base_14.4.1-5+deb8u4ubuntu0.1_armhf.deb (24.2 KiB)
• libsox-fmt-base_14.4.1-5+deb8u4ubuntu0.1_i386.deb (29.3 KiB)
• libsox-fmt-base_14.4.1-5+deb8u4ubuntu0.1_powerpc.deb (27.1 KiB)
• libsox-fmt-base_14.4.1-5+deb8u4ubuntu0.1_ppc64el.deb (26.5 KiB)
• libsox-fmt-base_14.4.1-5+deb8u4ubuntu0.1_s390x.deb (27.1 KiB)
• libsox-fmt-mp3-dbgsym_14.4.1-5+deb8u4ubuntu0.1_amd64.ddeb (20.2 KiB)
• libsox-fmt-mp3-dbgsym_14.4.1-5+deb8u4ubuntu0.1_arm64.ddeb (20.3 KiB)
• libsox-fmt-mp3-dbgsym_14.4.1-5+deb8u4ubuntu0.1_armhf.ddeb (20.2 KiB)
• libsox-fmt-mp3-dbgsym_14.4.1-5+deb8u4ubuntu0.1_i386.ddeb (18.5 KiB)
• libsox-fmt-mp3-dbgsym_14.4.1-5+deb8u4ubuntu0.1_powerpc.ddeb (20.3 KiB)
• libsox-fmt-mp3-dbgsym_14.4.1-5+deb8u4ubuntu0.1_ppc64el.ddeb (21.2 KiB)
• libsox-fmt-mp3-dbgsym_14.4.1-5+deb8u4ubuntu0.1_s390x.ddeb (18.7 KiB)
• libsox-fmt-mp3_14.4.1-5+deb8u4ubuntu0.1_amd64.deb (12.0 KiB)
• libsox-fmt-mp3_14.4.1-5+deb8u4ubuntu0.1_arm64.deb (11.1 KiB)
• libsox-fmt-mp3_14.4.1-5+deb8u4ubuntu0.1_armhf.deb (12.5 KiB)
• libsox-fmt-mp3_14.4.1-5+deb8u4ubuntu0.1_i386.deb (13.5 KiB)
• libsox-fmt-mp3_14.4.1-5+deb8u4ubuntu0.1_powerpc.deb (13.4 KiB)
• libsox-fmt-mp3_14.4.1-5+deb8u4ubuntu0.1_ppc64el.deb (12.2 KiB)
• libsox-fmt-mp3_14.4.1-5+deb8u4ubuntu0.1_s390x.deb (11.7 KiB)
• libsox-fmt-oss-dbgsym_14.4.1-5+deb8u4ubuntu0.1_amd64.ddeb (5.9 KiB)
• libsox-fmt-oss-dbgsym_14.4.1-5+deb8u4ubuntu0.1_arm64.ddeb (6.0 KiB)
• libsox-fmt-oss-dbgsym_14.4.1-5+deb8u4ubuntu0.1_armhf.ddeb (6.0 KiB)
• libsox-fmt-oss-dbgsym_14.4.1-5+deb8u4ubuntu0.1_i386.ddeb (5.7 KiB)
• libsox-fmt-oss-dbgsym_14.4.1-5+deb8u4ubuntu0.1_powerpc.ddeb (5.9 KiB)
• libsox-fmt-oss-dbgsym_14.4.1-5+deb8u4ubuntu0.1_ppc64el.ddeb (6.1 KiB)
• libsox-fmt-oss-dbgsym_14.4.1-5+deb8u4ubuntu0.1_s390x.ddeb (5.6 KiB)
• libsox-fmt-oss_14.4.1-5+deb8u4ubuntu0.1_amd64.deb (4.6 KiB)
• libsox-fmt-oss_14.4.1-5+deb8u4ubuntu0.1_arm64.deb (4.3 KiB)
• libsox-fmt-oss_14.4.1-5+deb8u4ubuntu0.1_armhf.deb (4.3 KiB)
• libsox-fmt-oss_14.4.1-5+deb8u4ubuntu0.1_i386.deb (4.7 KiB)
• libsox-fmt-oss_14.4.1-5+deb8u4ubuntu0.1_powerpc.deb (4.6 KiB)
• libsox-fmt-oss_14.4.1-5+deb8u4ubuntu0.1_ppc64el.deb (4.7 KiB)
• libsox-fmt-oss_14.4.1-5+deb8u4ubuntu0.1_s390x.deb (4.5 KiB)
• libsox-fmt-pulse-dbgsym_14.4.1-5+deb8u4ubuntu0.1_amd64.ddeb (6.3 KiB)
• libsox-fmt-pulse-dbgsym_14.4.1-5+deb8u4ubuntu0.1_arm64.ddeb (6.6 KiB)
• libsox-fmt-pulse-dbgsym_14.4.1-5+deb8u4ubuntu0.1_armhf.ddeb (6.5 KiB)
• libsox-fmt-pulse-dbgsym_14.4.1-5+deb8u4ubuntu0.1_i386.ddeb (6.1 KiB)
• libsox-fmt-pulse-dbgsym_14.4.1-5+deb8u4ubuntu0.1_powerpc.ddeb (6.4 KiB)
• libsox-fmt-pulse-dbgsym_14.4.1-5+deb8u4ubuntu0.1_ppc64el.ddeb (6.8 KiB)
• libsox-fmt-pulse-dbgsym_14.4.1-5+deb8u4ubuntu0.1_s390x.ddeb (6.1 KiB)
• libsox-fmt-pulse_14.4.1-5+deb8u4ubuntu0.1_amd64.deb (4.0 KiB)
• libsox-fmt-pulse_14.4.1-5+deb8u4ubuntu0.1_arm64.deb (3.9 KiB)
• libsox-fmt-pulse_14.4.1-5+deb8u4ubuntu0.1_armhf.deb (3.8 KiB)
• libsox-fmt-pulse_14.4.1-5+deb8u4ubuntu0.1_i386.deb (4.2 KiB)
• libsox-fmt-pulse_14.4.1-5+deb8u4ubuntu0.1_powerpc.deb (4.0 KiB)
• libsox-fmt-pulse_14.4.1-5+deb8u4ubuntu0.1_ppc64el.deb (4.1 KiB)
• libsox-fmt-pulse_14.4.1-5+deb8u4ubuntu0.1_s390x.deb (4.0 KiB)
• libsox2-dbgsym_14.4.1-5+deb8u4ubuntu0.1_amd64.ddeb (337.9 KiB)
• libsox2-dbgsym_14.4.1-5+deb8u4ubuntu0.1_arm64.ddeb (340.3 KiB)
• libsox2-dbgsym_14.4.1-5+deb8u4ubuntu0.1_armhf.ddeb (329.1 KiB)
• libsox2-dbgsym_14.4.1-5+deb8u4ubuntu0.1_i386.ddeb (308.9 KiB)
• libsox2-dbgsym_14.4.1-5+deb8u4ubuntu0.1_powerpc.ddeb (326.1 KiB)
• libsox2-dbgsym_14.4.1-5+deb8u4ubuntu0.1_ppc64el.ddeb (371.7 KiB)
• libsox2-dbgsym_14.4.1-5+deb8u4ubuntu0.1_s390x.ddeb (307.9 KiB)
• libsox2_14.4.1-5+deb8u4ubuntu0.1_amd64.deb (220.6 KiB)
• libsox2_14.4.1-5+deb8u4ubuntu0.1_arm64.deb (184.6 KiB)
• libsox2_14.4.1-5+deb8u4ubuntu0.1_armhf.deb (187.4 KiB)
• libsox2_14.4.1-5+deb8u4ubuntu0.1_i386.deb (225.1 KiB)
• libsox2_14.4.1-5+deb8u4ubuntu0.1_powerpc.deb (207.3 KiB)
• libsox2_14.4.1-5+deb8u4ubuntu0.1_ppc64el.deb (238.0 KiB)
• libsox2_14.4.1-5+deb8u4ubuntu0.1_s390x.deb (200.7 KiB)
• sox-dbgsym_14.4.1-5+deb8u4ubuntu0.1_amd64.ddeb (39.8 KiB)
• sox-dbgsym_14.4.1-5+deb8u4ubuntu0.1_arm64.ddeb (40.3 KiB)
• sox-dbgsym_14.4.1-5+deb8u4ubuntu0.1_armhf.ddeb (39.6 KiB)
• sox-dbgsym_14.4.1-5+deb8u4ubuntu0.1_i386.ddeb (36.7 KiB)
• sox-dbgsym_14.4.1-5+deb8u4ubuntu0.1_powerpc.ddeb (38.8 KiB)
• sox-dbgsym_14.4.1-5+deb8u4ubuntu0.1_ppc64el.ddeb (45.3 KiB)
• sox-dbgsym_14.4.1-5+deb8u4ubuntu0.1_s390x.ddeb (35.9 KiB)
• sox_14.4.1-5+deb8u4ubuntu0.1.debian.tar.xz (19.2 KiB)
• sox_14.4.1-5+deb8u4ubuntu0.1.dsc (2.7 KiB)
• sox_14.4.1-5+deb8u4ubuntu0.1_amd64.deb (95.1 KiB)
• sox_14.4.1-5+deb8u4ubuntu0.1_arm64.deb (92.2 KiB)
• sox_14.4.1-5+deb8u4ubuntu0.1_armhf.deb (93.0 KiB)
• sox_14.4.1-5+deb8u4ubuntu0.1_i386.deb (96.3 KiB)
• sox_14.4.1-5+deb8u4ubuntu0.1_powerpc.deb (94.4 KiB)
• sox_14.4.1-5+deb8u4ubuntu0.1_ppc64el.deb (95.3 KiB)
• sox_14.4.1-5+deb8u4ubuntu0.1_s390x.deb (94.3 KiB)
• sox_14.4.1.orig.tar.gz (1.1 MiB)