ncmpc through 0.29 is prone to a NULL pointer dereference flaw. If a user uses the chat screen and another client sends a long chat message, a crash and denial of service could occur.
The product dereferences a pointer that it expects to be valid but is NULL.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Ncmpc | Ncmpc_project | * | 0.29 (including) |
Ncmpc | Ubuntu | artful | * |
Ncmpc | Ubuntu | bionic | * |
Ncmpc | Ubuntu | cosmic | * |
Ncmpc | Ubuntu | esm-apps/xenial | * |
Ncmpc | Ubuntu | trusty | * |
Ncmpc | Ubuntu | xenial | * |