Red Hat Errata System 5.3 2008-01-23T07:18:11 Red Hat Enterprise Linux 3 SoX (Sound eXchange) is a sound file format converter. SoX can convert between many different digitized sound formats and perform simple sound manipulation functions, including sound effects. Buffer overflows existed in the parsing of WAV file header fields. It was possible that a malicious WAV file could have caused arbitrary code to be executed when the file was played or converted. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2004-0557 to these issues. All users of sox should upgrade to these updated packages, which resolve these issues as well as fix a number of minor bugs. Important Copyright 2004 Red Hat, Inc. CVE-2004-0557 cpe://redhat:enterprise_linux:3