[SECURITY] [DLA 128-1] sox security update
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Package : sox
Version : 14.3.1-1+deb6u1
CVE ID : CVE-2014-8145
Debian Bug : 773720
Michele Spagnuolo of the Google Security Team dicovered two heap-based
buffer overflows in SoX, the Swiss Army knife of sound processing
programs. A specially crafted wav file could cause an application using
SoX to crash or, possibly, execute arbitrary code.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)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=xDC8
-----END PGP SIGNATURE-----
Reply to: