FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-19 20:48:44 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
6bb6188c-17b2-11de-ae4d-0030843d3802	amarok -- multiple vulnerabilities Secunia reports: Tobias Klein has reported some vulnerabilities in Amarok, which potentially can be exploited by malicious people to compromise a user's system. Two integer overflow errors exist within the "Audible::Tag::readTag()" function in src/metadata/audible/audibletag.cpp. These can be exploited to cause heap-based buffer overflows via specially crafted Audible Audio files. Two errors within the "Audible::Tag::readTag()" function in src/metadata/audible/audibletag.cpp can be exploited to corrupt arbitrary memory via specially crafted Audible Audio files. Discovery 2009-01-12 Entry 2009-03-23 amarok < 1.4.10_3 33210 CVE-2009-0135 CVE-2009-0136 http://www.debian.org/security/2009/dsa-1706 http://secunia.com/advisories/33505

VuXML ID

Description

6bb6188c-17b2-11de-ae4d-0030843d3802

amarok -- multiple vulnerabilities

Secunia reports:

Tobias Klein has reported some vulnerabilities in Amarok, which potentially can be exploited by malicious people to compromise a user's system.

Two integer overflow errors exist within the "Audible::Tag::readTag()" function in src/metadata/audible/audibletag.cpp. These can be exploited to cause heap-based buffer overflows via specially crafted Audible Audio files.

Two errors within the "Audible::Tag::readTag()" function in src/metadata/audible/audibletag.cpp can be exploited to corrupt arbitrary memory via specially crafted Audible Audio files.

Discovery 2009-01-12
Entry 2009-03-23
amarok

< 1.4.10_3

33210
CVE-2009-0135
CVE-2009-0136
http://www.debian.org/security/2009/dsa-1706
http://secunia.com/advisories/33505