Linuxfoundation: >> Automotive Grade Linux Security Vulnerabilities
In MPD before 0.23.8, as used on Automotive Grade Linux and other platforms, the PipeWire output plugin mishandles a Drain call in certain situations involving truncated files. Eventually there is an assertion failure in libmpdclient because libqtappfw passes in a NULL pointer.
CVSS Score
7.5
EPSS Score
0.001
Published
2023-02-26