BugTraq
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
[oCERT-2014-003] LibYAML input sanitization errors Mar 26 2014 11:07PM
Andrea Barisani (lcars ocert org)

#2014-003 LibYAML input sanitization errors

Description:

The LibYAML project is an open source YAML 1.1 parser and emitter written in
C.

The library is affected by a heap-based buffer overflow which can lead to
arbitrary code execution. The vulnerability is caused by lack of proper
expansion for...

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus