CVE-2014-9130
CVE-2014-9130
scanner.c in LibYAML 0.1.5 and 0.1.6, as used in the YAML-LibYAML (aka YAML-XS) module for Perl, allows context-dependent attackers to cause a denial of service (assertion failure and crash) via vectors involving line-wrapping.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://advisories.mageia.org/MGASA-2014-0508.htmlhttp://linux.oracle.com/errata/ELSA-2015-0100.htmlhttp://lists.opensuse.org/opensuse-updates/2015-02/msg00078.htmlhttp://lists.opensuse.org/opensuse-updates/2016-04/msg00050.htmlhttp://rhn.redhat.com/errata/RHSA-2015-0100.htmlhttp://rhn.redhat.com/errata/RHSA-2015-0112.htmlhttp://rhn.redhat.com/errata/RHSA-2015-0260.htmlhttps://bitbucket.org/xi/libyaml/commits/2b9156756423e967cfd09a61d125d883fca6f4f2https://bitbucket.org/xi/libyaml/issue/10/wrapped-strings-cause-assert-failurehttp://secunia.com/advisories/59947http://secunia.com/advisories/60944http://secunia.com/advisories/62164