FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Dulwich -- Remote code execution

Affected packages
py27-dulwich < 0.9.9

Details

VuXML ID e426eda9-dae1-11e4-8107-94de806b0af9
Discovery 2015-01-07
Entry 2015-04-17

MITRE reports:

Buffer overflow in the C implementation of the apply_delta function in _pack.c in Dulwich before 0.9.9 allows remote attackers to execute arbitrary code via a crafted pack file.

[source]

References

CVE Name CVE-2015-0838

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.