NULL pointer dereference in the dacpreplyplayqueueeditclear function in src/httpddacp.c in owntone-server through commit 6d604a1 (newer commit after version 28.12) allows remote attackers to cause a Denial of Service (crash).
{
"cna_assigner": "mitre",
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/57xxx/CVE-2025-57156.json"
}{
"source": [
"CPE_RANGE",
"REFERENCES"
],
"cpe": "cpe:2.3:a:owntone:owntone_server:*:*:*:*:*:*:*:*",
"extracted_events": [
{
"introduced": "0"
},
{
"last_affected": "28.12"
}
]
}"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-57156.json"
[
{
"id": "CVE-2025-57156-b6f85b3e",
"signature_type": "Function",
"signature_version": "v1",
"source": "https://github.com/owntone/owntone-server/commit/5e4d40ee03ae22ab79534bb1410fa9db96c9fabd",
"deprecated": false,
"digest": {
"function_hash": "265906059652663118601435356401398868101",
"length": 432.0
},
"target": {
"function": "dacp_reply_playqueueedit_clear",
"file": "src/httpd_dacp.c"
}
},
{
"id": "CVE-2025-57156-f7845b15",
"signature_type": "Line",
"signature_version": "v1",
"source": "https://github.com/owntone/owntone-server/commit/5e4d40ee03ae22ab79534bb1410fa9db96c9fabd",
"deprecated": false,
"digest": {
"threshold": 0.9,
"line_hashes": [
"158674466965424907838216926545958290299",
"11845804404603833354839626176267856447",
"194268673386357485042971034960685202820",
"75317284670289669780758649940199479625",
"23440141608120423264337129654445761972",
"234291141180925024453902219501435956715"
]
},
"target": {
"file": "src/httpd_dacp.c"
}
}
]
"2026-07-15T22:25:36Z"