[Bug 1033990] CVE-2013-6393 libyaml: heap-based buffer overflow when parsing YAML tags

bugzilla at redhat.com bugzilla at redhat.com
Thu Nov 6 05:51:28 UTC 2014 

https://bugzilla.redhat.com/show_bug.cgi?id=1033990

Marianne Feifer <mfeifer at redhat.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|mfeifer at redhat.com          |

Kurt Seifried <kseifried at redhat.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
         Whiteboard|impact=moderate,public=2014 |impact=moderate,public=2014
                   |0127,reported=20131122,sour |0127,reported=20131122,sour
                   |ce=redhat,cvss2=4.3/AV:A/AC |ce=redhat,cvss2=4.3/AV:A/AC
                   |:H/Au:N/C:P/I:P/A:P,rhel-6/ |:H/Au:N/C:P/I:P/A:P,rhel-6/
                   |libyaml=affected,rhel-7/lib |libyaml=affected,rhel-7/lib
                   |yaml=affected,rhscl-1/ruby1 |yaml=affected,rhscl-1/ruby1
                   |93-libyaml=affected,rhscl-1 |93-libyaml=affected,rhscl-1
                   |/libyaml=affected,fedora-al |/libyaml=affected,fedora-al
                   |l/libyaml=affected,epel-all |l/libyaml=affected,epel-all
                   |/libyaml=affected,mrg-1/lib |/libyaml=affected,mrg-1/lib
                   |yaml=wontfix,mrg-2/libyaml= |yaml=wontfix,mrg-2/libyaml=
                   |wontfix,rhn_satellite_5.3/l |wontfix,rhn_satellite_5.3/l
                   |ibyaml=wontfix,rhn_satellit |ibyaml=wontfix,rhn_satellit
                   |e_5.4/libyaml=wontfix,rhn_s |e_5.4/libyaml=wontfix,rhn_s
                   |atellite_5.5/libyaml=wontfi |atellite_5.5/libyaml=wontfi
                   |x,rhn_satellite_5.6/libyaml |x,rhn_satellite_5.6/libyaml
                   |=wontfix,rhn_satellite_6/li |=wontfix,rhn_satellite_6/li
                   |byaml=affected,rhn_satellit |byaml=affected,rhn_satellit
                   |e_6/ruby193-libyaml=affecte |e_6/ruby193-libyaml=affecte
                   |d,rhui-2/libyaml=wontfix,sa |d,rhui-2/libyaml=wontfix,sa
                   |m-1/libyaml=defer,cfme-5/mi |m-1/libyaml=wontfix,cfme-5/
                   |ngw-libyaml=wontfix,cfme-5/ |mingw-libyaml=wontfix,cfme-
                   |ruby193-libyaml=wontfix,ope |5/ruby193-libyaml=wontfix,o
                   |nstack-3/libyaml=affected,o |penstack-3/libyaml=affected
                   |penstack-3/ruby193-libyaml= |,openstack-3/ruby193-libyam
                   |affected,openstack-4/libyam |l=affected,openstack-4/liby
                   |l=affected,openshift-enterp |aml=affected,openshift-ente
                   |rise-1/ruby193-libyaml=wont |rprise-1/ruby193-libyaml=wo
                   |fix,openshift-1/ruby193-lib |ntfix,openshift-1/ruby193-l
                   |yaml=affected,fedora-all/pe |ibyaml=affected,fedora-all/
                   |rl-YAML-LibYAML=affected,ep |perl-YAML-LibYAML=affected,
                   |el-6/perl-YAML-LibYAML=affe |epel-6/perl-YAML-LibYAML=af
                   |cted                        |fected



-- 
You are receiving this mail because:
You are on the CC list for the bug.
Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=kVuvE4zKTl&a=cc_unsubscribe

More information about the perl-devel mailing list