DSA-2850 libyaml - heap-based buffer overflow
|
Información sobre el sistema
|
|
|
Software afectado |
Debian |
Descripción
|
Florian Weimer of the Red Hat Product Security Team discovered aheap-based buffer overflow flaw in LibYAML, a fast YAML 1.1 parser andemitter library. A remote attacker could provide a YAML document with aspecially-crafted tag that, when parsed by an application using libyaml,would cause the application to crash or, potentially, execute arbitrarycode with the privileges of the user running the application.
More info:
http://www.debian.org/security/2014/dsa-2850 |
Identificadores estándar
|
Propiedad |
Valor |
CVE |
CVE-2013-6393 and DSA-2850. |