CVE-2017-6438 log

Source
Severity High
Remote No
Type Arbitrary command execution
Description
Heap-based buffer overflow in the parse_unicode_node function in bplist.c in libimobiledevice libplist 1.12 allows local users to cause a denial of service (out-of-bounds write) and possibly code execution via a crafted plist file.
Group Package Affected Fixed Severity Status Ticket
AVG-215 libplist 1.12-6 2.0.0-1 High Fixed
Date Advisory Group Package Severity Type
16 May 2017 ASA-201705-18 AVG-215 libplist High multiple issues
References
https://github.com/libimobiledevice/libplist/issues/98