libplist is vulnerable to denial of service (DoS) attacks. The vulnerability exists because the parse_string_node
function in bplist.c
does not properly handle malloc()
failure , allowing the attacker to cause a denial of service through a plist
file locally.