CVE-2015-0838: Buffer Overflow when handling pack files
Dulwich contains an overflow condition in the py_apply_delta() function in _pack.c. The issue is triggered as user-supplied input is not properly validated when handling pack files. This may allow a context-dependent attacker to cause a buffer overflow, resulting in a denial of service or potentially allowing the execution of arbitrary code.
References
Detect and mitigate CVE-2015-0838 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →