The main function in plistutil.c in libimobiledevice libplist++-dev through 1.12allows attackers to obtain sensitive information from process memory or cause a denial of service via Apple Property List data that is too short.