{"id":"CVE-2009-0136","details":"Multiple array index errors in the Audible::Tag::readTag function in metadata/audible/audibletag.cpp in Amarok 1.4.10 through 2.0.1 allow remote attackers to cause a denial of service (application crash) or execute arbitrary code via an Audible Audio (.aa) file with a crafted (1) nlen or (2) vlen Tag value, each of which can lead to an invalid pointer dereference, or the writing of a 0x00 byte to an arbitrary memory location, after an allocation failure.","modified":"2026-01-27T04:09:33.610168Z","published":"2009-01-16T18:30:00Z","withdrawn":"2026-01-27T04:09:33.610168Z","references":[{"type":"ADVISORY","url":"http://amarok.kde.org/en/releases/2.0.1.1"},{"type":"ADVISORY","url":"http://secunia.com/advisories/33505"},{"type":"ADVISORY","url":"http://secunia.com/advisories/33522"},{"type":"ADVISORY","url":"http://secunia.com/advisories/33640"},{"type":"ADVISORY","url":"http://secunia.com/advisories/33819"},{"type":"ADVISORY","url":"http://secunia.com/advisories/34315"},{"type":"ADVISORY","url":"http://secunia.com/advisories/34407"},{"type":"ADVISORY","url":"http://security.gentoo.org/glsa/glsa-200903-34.xml"},{"type":"ADVISORY","url":"http://www.debian.org/security/2009/dsa-1706"},{"type":"ADVISORY","url":"http://www.mandriva.com/security/advisories?name=MDVSA-2009:030"},{"type":"ADVISORY","url":"http://www.ubuntu.com/usn/USN-739-1"},{"type":"ADVISORY","url":"http://www.vupen.com/english/advisories/2009/0100"},{"type":"EVIDENCE","url":"http://trapkit.de/advisories/TKADV2009-002.txt"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=479560"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=479946"},{"type":"WEB","url":"http://bugs.gentoo.org/show_bug.cgi?id=254896"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00000.html"},{"type":"WEB","url":"http://openwall.com/lists/oss-security/2009/01/14/2"},{"type":"WEB","url":"http://securityreason.com/securityalert/4915"},{"type":"WEB","url":"http://websvn.kde.org/?view=rev&revision=908391"},{"type":"WEB","url":"http://websvn.kde.org/?view=rev&revision=908401"},{"type":"WEB","url":"http://websvn.kde.org/?view=rev&revision=908415"},{"type":"WEB","url":"http://www.securityfocus.com/archive/1/499984/100/0/threaded"},{"type":"WEB","url":"http://www.securityfocus.com/bid/33210"},{"type":"WEB","url":"http://www.securitytracker.com/id?1021558"},{"type":"WEB","url":"https://www.redhat.com/archives/fedora-package-announce/2009-January/msg00708.html"}],"schema_version":"1.7.3"}