Описание
A vulnerability was found in libyaml 0.2.5. This issue is caused by a heap-based buffer overflow in yaml_document_add_sequence in api.c.
Отчет
Red Hat Product Security does not consider this to be a vulnerability.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 10 | libyaml | Not affected | ||
| Red Hat Enterprise Linux 10 | python-ruamel-yaml-clib | Not affected | ||
| Red Hat Enterprise Linux 6 | libyaml | Not affected | ||
| Red Hat Enterprise Linux 7 | libyaml | Not affected | ||
| Red Hat Enterprise Linux 8 | libyaml | Not affected | ||
| Red Hat Enterprise Linux 8 | perl-YAML-LibYAML | Not affected | ||
| Red Hat Enterprise Linux 9 | libyaml | Not affected | ||
| Red Hat Enterprise Linux 9 | python-ruamel-yaml-clib | Not affected |
Показывать по
10
Дополнительная информация
Дефект:
CWE-119
https://bugzilla.redhat.com/show_bug.cgi?id=2291258libyaml: vulnerable to a heap-based Buffer Overflow in yaml_document_add_sequence in api.c
0 Low
CVSS3
Связанные уязвимости
ubuntu
больше 1 года назад
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.
nvd
больше 1 года назад
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.
github
больше 1 года назад
libyaml 0.2.5 is vulnerable to a heap-based Buffer Overflow in yaml_document_add_sequence in api.c.
0 Low
CVSS3