Описание
Multiple format string vulnerabilities in the error reporting functionality in the YAML::LibYAML (aka YAML-LibYAML and perl-YAML-LibYAML) module 0.38 for Perl allow remote attackers to cause a denial of service (process crash) via format string specifiers in a (1) YAML stream to the Load function, (2) YAML node to the load_node function, (3) YAML mapping to the load_mapping function, or (4) YAML sequence to the load_sequence function.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 0.38-2 |
| hardy | DNE | |
| lucid | ignored | end of life |
| maverick | released | 0.33-1+squeeze1build0.10.10.1 |
| natty | ignored | end of life |
| oneiric | ignored | end of life |
| precise | released | 0.38-2 |
| quantal | released | 0.38-2 |
| raring | released | 0.38-2 |
| saucy | released | 0.38-2 |
Показывать по
Ссылки на источники
5 Medium
CVSS2
Связанные уязвимости
Multiple format string vulnerabilities in the error reporting functionality in the YAML::LibYAML (aka YAML-LibYAML and perl-YAML-LibYAML) module 0.38 for Perl allow remote attackers to cause a denial of service (process crash) via format string specifiers in a (1) YAML stream to the Load function, (2) YAML node to the load_node function, (3) YAML mapping to the load_mapping function, or (4) YAML sequence to the load_sequence function.
Multiple format string vulnerabilities in the error reporting function ...
Multiple format string vulnerabilities in the error reporting functionality in the YAML::LibYAML (aka YAML-LibYAML and perl-YAML-LibYAML) module 0.38 for Perl allow remote attackers to cause a denial of service (process crash) via format string specifiers in a (1) YAML stream to the Load function, (2) YAML node to the load_node function, (3) YAML mapping to the load_mapping function, or (4) YAML sequence to the load_sequence function.
5 Medium
CVSS2