Debian Linux Security Advisory 4808-1 - It was discovered that missing input validation in the ar/tar implementations of APT, the high level package manager, could cause out-of-bounds reads or infinite loops, resulting in denial of service when processing malformed deb files.
72b22af4983e423e88a9104f100d1306c4503588d7516f149b0a6cbd98324d31