github.com/moby/moby (formerly known as github.com/docker/docker) is vulnerable to denial of service (DoS) attacks. These attacks are possible because the NewInputTarStream()
function in tar-split does not limit the number of \0
’s at the end of an archive, filling the RAM.