FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

py-nicotine-plus -- Denial of service vulnerability

Affected packages
py310-nicotine-plus < 3.2.1
py311-nicotine-plus < 3.2.1
py37-nicotine-plus < 3.2.1
py38-nicotine-plus < 3.2.1
py39-nicotine-plus < 3.2.1

Details

VuXML ID e87a9326-dd35-49fc-b20b-f57cbebaae87
Discovery 2022-03-16
Entry 2023-04-09

ztauras reports:

Denial of service (DoS) vulnerability in Nicotine+ starting with version 3.0.3 and prior to version 3.2.1 allows a user with a modified Soulseek client to crash Nicotine+ by sending a file download request with a file path containing a null character.

[source]

References

CVE Name CVE-2021-45848
URL https://osv.dev/vulnerability/GHSA-p4v2-r99v-wjc2

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.