Pyyaml: >> Libyaml >> 0.1.5 Security Vulnerabilities
scanner.c in LibYAML 0.1.5 and 0.1.6, as used in the YAML-LibYAML (aka YAML-XS) module for Perl, allows context-dependent attackers to cause a denial of service (assertion failure and crash) via vectors involving line-wrapping.
CVSS Score
5.0
EPSS Score
0.608
Published
2014-12-08
Heap-based buffer overflow in the yaml_parser_scan_uri_escapes function in LibYAML before 0.1.6 allows context-dependent attackers to execute arbitrary code via a long sequence of percent-encoded characters in a URI in a YAML file.
CVSS Score
6.8
EPSS Score
0.613
Published
2014-03-28