CVE-2017-5834

Source
Severity High
Remote No
Type Denial of service
Description
The parse_dict_node function in bplist.c in libplist allows attackers to cause a denial of service (out-of-bounds heap read and crash) via a crafted file.
Group Package Affected Fixed Severity Status Ticket
AVG-215 libplist 1.12-6 2.0.0-1 High Fixed
Date Advisory Group Package Severity Description
16 May 2017 ASA-201705-18 AVG-215 libplist High multiple issues
References
https://bugzilla.redhat.com/show_bug.cgi?id=1418591