[Bug 1078083] CVE-2014-2525 libyaml: heap-based buffer overflow when parsing URLs

bugzilla at redhat.com bugzilla at redhat.com
Thu Nov 6 04:28:31 UTC 2014


https://bugzilla.redhat.com/show_bug.cgi?id=1078083

Kurt Seifried <kseifried at redhat.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
         Whiteboard|impact=important,public=201 |impact=important,public=201
                   |40327,reported=20140318,sou |40327,reported=20140318,sou
                   |rce=distros,cvss2=6.8/AV:N/ |rce=distros,cvss2=6.8/AV:N/
                   |AC:M/Au:N/C:P/I:P/A:P,rhel- |AC:M/Au:N/C:P/I:P/A:P,rhel-
                   |6/libyaml=affected,rhel-7/l |6/libyaml=affected,rhel-7/l
                   |ibyaml=affected,rhscl-1/rub |ibyaml=affected,rhscl-1/rub
                   |y193-libyaml=affected,rhscl |y193-libyaml=affected,rhscl
                   |-1/libyaml=affected,mrg-1/l |-1/libyaml=affected,mrg-1/l
                   |ibyaml=wontfix,mrg-2/libyam |ibyaml=wontfix,mrg-2/libyam
                   |l=wontfix,rhn_satellite_5.3 |l=wontfix,rhn_satellite_5.3
                   |/libyaml=affected,rhn_satel |/libyaml=affected,rhn_satel
                   |lite_5.4/libyaml=affected,r |lite_5.4/libyaml=affected,r
                   |hn_satellite_5.5/libyaml=af |hn_satellite_5.5/libyaml=af
                   |fected,rhn_satellite_5.6/li |fected,rhn_satellite_5.6/li
                   |byaml=affected,rhn_satellit |byaml=affected,rhn_satellit
                   |e_6/libyaml=affected,rhui-2 |e_6/libyaml=affected,rhui-2
                   |/libyaml=wontfix,sam-1/liby |/libyaml=wontfix,sam-1/liby
                   |aml=defer,cfme-5/mingw-liby |aml=affected,cfme-5/mingw-l
                   |aml=wontfix,cfme-5/ruby193- |ibyaml=wontfix,cfme-5/ruby1
                   |libyaml=affected,openstack- |93-libyaml=affected,opensta
                   |3/libyaml=affected,openstac |ck-3/libyaml=affected,opens
                   |k-3/ruby193-libyaml=affecte |tack-3/ruby193-libyaml=affe
                   |d,openstack-4/libyaml=affec |cted,openstack-4/libyaml=af
                   |ted,openshift-enterprise-1/ |fected,openshift-enterprise
                   |ruby193-libyaml=wontfix,ope |-1/ruby193-libyaml=wontfix,
                   |nshift-1/ruby193-libyaml=af |openshift-1/ruby193-libyaml
                   |fected,fedora-all/libyaml=a |=affected,fedora-all/libyam
                   |ffected,epel-all/libyaml=af |l=affected,epel-all/libyaml
                   |fected,fedora-all/perl-YAML |=affected,fedora-all/perl-Y
                   |-LibYAML=affected,epel-6/pe |AML-LibYAML=affected,epel-6
                   |rl-YAML-LibYAML=affected    |/perl-YAML-LibYAML=affected



-- 
You are receiving this mail because:
You are on the CC list for the bug.
Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=CxWn46np2a&a=cc_unsubscribe



More information about the perl-devel mailing list