PT-2026-34240

OwnTone Server versions 28.4 through 29.0 contain a race condition vulnerability in the DAAP login handler that allows unauthenticated attackers to crash the server by exploiting unsynchronized access to the global DAAP session list. Attackers can flood the DAAP /login endpoint with concurrent...

SUSE CVE-2026-26828

A NULL pointer dereference in the daapreplyplaylists function src/httpddaap.c of owntone-server commit 3d1652d allows attackers to cause a Denial of Service DoS via sending a crafted DAAP request to the server...

OwnTone 安全漏洞

OwnTone is an open-source Linux/FreeBSD DAAP iTunes, MPD Music Player Daemon, and RSP Roku media server. OwnTone has a security vulnerability that stems from a null pointer dereferencing in the daapreplyplaylists function. This vulnerability could allow attackers to cause denial of service by...

EUVD-2009-0029

Malware in sbrugna...

CVE-2009-0016

Apple iTunes before 8.1 on Windows allows remote attackers to cause a denial of service infinite loop via a Digital Audio Access Protocol DAAP message with a crafted Content-Length header...