A vulnerability was found in libplist. There is a use-after-free issue in the bplist.c. A maliciously crafted file could cause the application to crash. Upstream bug: https://github.com/libimobiledevice/libplist/issues/86 Upstream patch: https://github.com/libimobiledevice/libplist/commit/7a28a14cf6ed547dfd2e52a4db17f47242bfdef9
Created libplist tracking bugs for this issue: Affects: fedora-all [bug 1418597]