CVE-2022-31651
First published: Wed May 25 2022(Updated: )
In SoX 14.4.2, there is an assertion failure in rate_init in rate.c in libsox.a.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| debian/sox | <=14.4.2+git20190427-1 | 14.4.2+git20190427-1+deb10u3 14.4.2+git20190427-2+deb11u2 14.4.2+git20190427-3.5 |
| Sox Project Sox | =14.4.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://sourceforge.net/p/sox/bugs/360/
- https://www.openwall.com/lists/oss-security/2023/02/03/3
- https://security-tracker.debian.org/tracker/CVE-2022-31651
- http://www.openwall.com/lists/oss-security/2023/02/03/3
- https://lists.debian.org/debian-lts-announce/2023/02/msg00009.html
- https://www.debian.org/security/2023/dsa-5356
Frequently Asked Questions
What is the severity of CVE-2022-31651?
The severity of CVE-2022-31651 is medium with a CVSS score of 5.5.
What is the affected software of CVE-2022-31651?
The affected software of CVE-2022-31651 is SoX version 14.4.2.
How can I fix CVE-2022-31651?
To fix CVE-2022-31651, update the SoX package to version 14.4.2+git20190427-3.5 or later.
Where can I find more information about CVE-2022-31651?
You can find more information about CVE-2022-31651 on the following references: [1] [2] [3]
What is the CWE of CVE-2022-31651?
The CWE of CVE-2022-31651 is CWE-617.
- collector/security-tracker-debian
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/last-modified-date
- agent/weakness
- agent/author
- agent/severity
- agent/tags
- agent/description
- agent/first-publish-date
- agent/event
- package-manager/debian
- vendor/sox project
- canonical/sox project sox
- version/sox project sox/14.4.2