Launchpad.net

CVE 2017-5835

libplist allows attackers to cause a denial of service (large memory allocation and crash) via vectors involving an offset size of zero.

See the CVE page on Mitre.org for more details.