libpkgconf.so is vulnerable to Denial Of Service (DoS). The vulnerability is due to unbounded string expansion which causes a buffer overflow in the pkgconf_tuple_parse
function in tuple.c
, allowing an attacker to cause an application crash by processing a malicious file.