FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2009-0135

This CVE name corresponds to:

Entered Topic
2009-03-23 amarok -- multiple vulnerabilities

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2009-0135 at cve.mitre.org

Details

Type Candidate
Name CVE-2009-0135
Phase Assigned(20090116)

Description

Multiple integer overflows in the Audible::Tag::readTag function in metadata/audible/audibletag.cpp in Amarok 1.4.10 through 2.0.1 allow remote attackers to execute arbitrary code via an Audible Audio (.aa) file with a large (1) nlen or (2) vlen Tag value, each of which triggers a heap-based buffer overflow.

References

Source Reference
BUGTRAQ 20090111 [TKADV2009-002] Amarok Integer Overflow and Unchecked Allocation Vulnerabilities
MLIST [oss-security] 20090114 CVE Request -- amarok
MISC http://trapkit.de/advisories/TKADV2009-002.txt
CONFIRM http://amarok.kde.org/en/releases/2.0.1.1
CONFIRM http://bugs.gentoo.org/show_bug.cgi?id=254896
CONFIRM http://websvn.kde.org/?view=rev&revision=908391
CONFIRM http://websvn.kde.org/?view=rev&revision=908401
CONFIRM http://websvn.kde.org/?view=rev&revision=908415
CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=479560
CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=479946
DEBIAN DSA-1706
FEDORA FEDORA-2009-0715
GENTOO GLSA-200903-34
MANDRIVA MDVSA-2009:030
SUSE SUSE-SR:2009:003
UBUNTU USN-739-1
BID 33210
SECUNIA 34315
SECUNIA 34407
VUPEN ADV-2009-0100
SECTRACK 1021558
SECUNIA 33505
SECUNIA 33522
SECUNIA 33640
SECUNIA 33819
SREASON 4915

Copyright © 2005 The MITRE Corporation.

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.