A flaw was found in libucl. A remote attacker could exploit this by providing a specially crafted Universal Configuration Language (UCL) input that contains a k…

A vulnerability in libucl allows remote attackers to cause denial of service through specially crafted Universal Configuration Language (UCL) input containing keys with embedded null bytes. The flaw triggers a segmentation fault in the ucl_object_emit function during parsing and emitting operations. This results in application crashes and system unavailability. The vulnerability affects the Universal Configuration Language parsing library. Remote exploitation is possible without authentication requirements.