DSA-2870 libyaml-libyaml-perl - heap-based buffer overflow
|
System information
|
|
|
Affected software |
Debian |
Description
|
Florian Weimer of the Red Hat Product Security Team discovered aheap-based buffer overflow flaw in LibYAML, a fast YAML 1.1 parser andemitter library. A remote attacker could provide a YAML document with aspecially-crafted tag that, when parsed by an application using libyaml,would cause the application to crash or, potentially, execute arbitrarycode with the privileges of the user running the application.
More info:
http://www.debian.org/security/2014/dsa-2870 |
Standar resources
|
Property |
Value |
CVE |
CVE-2013-6393 and DSA-2870. |