CVE-2021-40426 | A heap-based buffer overflow vulnerability exists in the sph… | CVSS 10.0 CRITICAL

Description

A heap-based buffer overflow vulnerability exists in the sphere.c start_read() functionality of Sound Exchange libsox 14.4.2 and master commit 42b3557e. A specially-crafted file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability.

Metadata

CVE ID: CVE-2021-40426
State: PUBLISHED
Assigner: talos
Reserved: 2021-09-01 00:00 UTC
Published: 2022-04-14 19:56 UTC
Last updated: 2025-04-15 19:07 UTC
Primary CWE: CWE-122
CWE-122: Heap-based Buffer Overflow
Vendor / Product: Sound Exchange / libsox
Sources: cve.org · NVD

Severity & Metrics

10.0 CRITICAL CVSS 3.0

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

SSVC — CISA Coordinator

Exploitation: PoC
Automatable: yes
Tech. Impact: total

Affected products (1)

Vendor	Product	Platform	Versions
Sound Exchange	libsox	—	14.4.2, master commit 42b3557e

Weakness (CWE)

CWE	Source	Description
CWE-122	cna	CWE-122: Heap-based Buffer Overflow

CVSS scores (1)

Score	Severity	Version	Source	Vector
10.0	CRITICAL	3.0	cna	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

References (4)

https://talosintelligence.com/vulnerability_reports/TALOS-2021-1434
[oss-security] 20230203 sox: patches for old vulnerabilities http://www.openwall.com/lists/oss-security/2023/02/03/3
[debian-lts-announce] 20230210 [SECURITY] [DLA 3315-1] sox security update https://lists.debian.org/debian-lts-announce/2023/02/msg00009.html
DSA-5356 https://www.debian.org/security/2023/dsa-5356