A NULL pointer dereference in libcoap v4.3.5-rc2 and below allows a remote attacker to cause a denial of service via the coaphandlerequestputblock function in src/coap_block.c.
{ "ubuntu_priority": "medium" }