repodata_schema2id in repodata.c in libsolv prior to 0.7.6 has a heap-based buffer over-read via a last schema whose length is less than the length of the input schema.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
opensuse libsolv |
||
debian debian linux 8.0 |