OwnTone (aka owntone-server) through 28.1 has a use-after-free in net_bind() in misc.c.
CVSS 3.x
| Source | Score | Severity | Vector | Exploitability | Impact |
|---|---|---|---|---|---|
| nvd@nist.gov | 9.8 | CRITICAL | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H | 3.9 | 5.9 |
CVSS 2.0
Severity: HIGH
Problem Type: CWE-416,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| owntone_project | owntone | * |
| owntone | owntone_server | * |
NULL pointer dereference in the daap_reply_groups function in src/httpd_daap.c in owntone-server through commit 5e6f19a (newer commit after version 28.2) allows remote attackers to cause a Denial of Service.
Products Affected
| Vendor | Product | Version |
|---|---|---|
| owntone_project | owntone | * |
| owntone | owntone_server | * |
NULL pointer dereference in the dacp_reply_playqueueedit_clear function in src/httpd_dacp.c in owntone-server through commit 6d604a1 (newer commit after version 28.12) allows remote attackers to cause a Denial of Service (crash).
Products Affected
| Vendor | Product | Version |
|---|---|---|
| owntone_project | owntone | * |
| owntone | owntone_server | * |
A NULL pointer dereference in the parse_meta function (src/httpd_daap.c) of owntone-server commit 334beb allows attackers to cause a Denial of Service (DoS) via sending a crafted DAAP request to the server.
Products Affected
| Vendor | Product | Version |
|---|---|---|
| owntone_project | owntone | * |
| owntone | owntone_server | * |
A NULL pointer dereference in the dacp_reply_playqueueedit_move function (src/httpd_dacp.c) of owntone-server commit b7e385f allows attackers to cause a Denial of Service (DoS) via sending a crafted DACP request to the server.
Products Affected
| Vendor | Product | Version |
|---|---|---|
| owntone_project | owntone | * |
| owntone | owntone_server | * |