Security Advisory

CVE-2025-57156

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-01-20 00:00:00

Last updated 2026-01-21 14:50:17

Assigner mitre

State PUBLISHED

Description

NULL pointer dereference in the dacp_reply_playqueueedit_clear function in src/httpd_dacp.c in owntone-server through commit 6d604a1 (newer commit after version 28.12) allows remote attackers to cause a Denial of Service (crash).

← Browse all CVEs View on cve.org ↗