FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  362910
Date:      2014-07-25
Time:      14:12:54Z
Committer: ohauer

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
6bb6188c-17b2-11de-ae4d-0030843d3802amarok -- multiple vulnerabilities

Secunia reports:

Tobias Klein has reported some vulnerabilities in Amarok, which potentially can be exploited by malicious people to compromise a user's system.

Two integer overflow errors exist within the "Audible::Tag::readTag()" function in src/metadata/audible/audibletag.cpp. These can be exploited to cause heap-based buffer overflows via specially crafted Audible Audio files.

Two errors within the "Audible::Tag::readTag()" function in src/metadata/audible/audibletag.cpp can be exploited to corrupt arbitrary memory via specially crafted Audible Audio files.


Discovery 2009-01-12
Entry 2009-03-23
amarok
lt 1.4.10_3

33210
CVE-2009-0135
CVE-2009-0136
http://www.debian.org/security/2009/dsa-1706
http://secunia.com/advisories/33505
6bb6188c-17b2-11de-ae4d-0030843d3802amarok -- multiple vulnerabilities

Secunia reports:

Tobias Klein has reported some vulnerabilities in Amarok, which potentially can be exploited by malicious people to compromise a user's system.

Two integer overflow errors exist within the "Audible::Tag::readTag()" function in src/metadata/audible/audibletag.cpp. These can be exploited to cause heap-based buffer overflows via specially crafted Audible Audio files.

Two errors within the "Audible::Tag::readTag()" function in src/metadata/audible/audibletag.cpp can be exploited to corrupt arbitrary memory via specially crafted Audible Audio files.


Discovery 2009-01-12
Entry 2009-03-23
amarok
lt 1.4.10_3

33210
CVE-2009-0135
CVE-2009-0136
http://www.debian.org/security/2009/dsa-1706
http://secunia.com/advisories/33505