libsolv is a library for checking package dependencies. libsolv suffers from a buffer overflow vulnerability that stems from two heap overflow vulnerabilities in the resolve_dependencies function in src/solver.c in the decision mapping variable, which can be exploited by an attacker to cause a remote denial of service.