FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2009-0136

This CVE name corresponds to:

Entered	Topic
2009-03-23	amarok -- multiple vulnerabilities

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2009-0136 at cve.mitre.org

Details

Type	Candidate
Name	CVE-2009-0136
Phase	Assigned(20090116)

Description

Multiple array index errors in the Audible::Tag::readTag function in metadata/audible/audibletag.cpp in Amarok 1.4.10 through 2.0.1 allow remote attackers to cause a denial of service (application crash) or execute arbitrary code via an Audible Audio (.aa) file with a crafted (1) nlen or (2) vlen Tag value, each of which can lead to an invalid pointer dereference, or the writing of a 0x00 byte to an arbitrary memory location, after an allocation failure.

References

Source	Reference
BUGTRAQ	20090111 [TKADV2009-002] Amarok Integer Overflow and Unchecked Allocation Vulnerabilities
MLIST	[oss-security] 20090114 CVE Request -- amarok
MISC	http://trapkit.de/advisories/TKADV2009-002.txt
CONFIRM	http://amarok.kde.org/en/releases/2.0.1.1
CONFIRM	http://bugs.gentoo.org/show_bug.cgi?id=254896
CONFIRM	http://websvn.kde.org/?view=rev&revision=908391
CONFIRM	http://websvn.kde.org/?view=rev&revision=908401
CONFIRM	http://websvn.kde.org/?view=rev&revision=908415
CONFIRM	https://bugzilla.redhat.com/show_bug.cgi?id=479560
CONFIRM	https://bugzilla.redhat.com/show_bug.cgi?id=479946
DEBIAN	DSA-1706
FEDORA	FEDORA-2009-0715
GENTOO	GLSA-200903-34
MANDRIVA	MDVSA-2009:030
SUSE	SUSE-SR:2009:003
UBUNTU	USN-739-1
BID	33210
SECUNIA	34315
SECUNIA	34407
VUPEN	ADV-2009-0100
SECTRACK	1021558
SECUNIA	33505
SECUNIA	33522
SECUNIA	33640
SECUNIA	33819
SREASON	4915