Your submission was sent successfully! Close

CVE-2018-9240

Published: 3 April 2018

ncmpc through 0.29 is prone to a NULL pointer dereference flaw. If a user uses the chat screen and another client sends a long chat message, a crash and denial of service could occur.

Priority

Medium

CVSS 3 base score: 7.5

Status

Package Release Status
ncmpc
Launchpad, Ubuntu, Debian
artful Ignored
(reached end-of-life)
bionic Needs triage

cosmic Ignored
(reached end-of-life)
disco Not vulnerable
(0.33-2)
eoan Not vulnerable
(0.33-2)
focal Not vulnerable
(0.33-2)
groovy Not vulnerable
(0.33-2)
hirsute Not vulnerable
(0.33-2)
impish Not vulnerable
(0.33-2)
jammy Not vulnerable
(0.33-2)
precise Does not exist

trusty Does not exist
(trusty was needs-triage)
upstream Needs triage

xenial
Released (0.24-1+deb8u1build0.16.04.1)