A vulnerability was found in libplist. There is a heap-buffer overflow in parse_dict_node. A maliciously crafted file could cause the application to crash. Upstream bug: https://github.com/libimobiledevice/libplist/issues/89 Upstream patch: https://github.com/libimobiledevice/libplist/commit/4765d9a60ca4248a8f89289271ac69cbffcc29bc
Created libplist tracking bugs for this issue: Affects: fedora-all [bug 1418597]