[Bug 1078083] CVE-2014-2525 libyaml: heap-based buffer overflow when parsing URLs

bugzilla at redhat.com bugzilla at redhat.com
Fri Nov 7 07:55:40 UTC 2014


https://bugzilla.redhat.com/show_bug.cgi?id=1078083

Kurt Seifried <kseifried at redhat.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
         Whiteboard|impact=important,public=201 |impact=important,public=201
                   |40327,reported=20140318,sou |40327,reported=20140318,sou
                   |rce=distros,cvss2=6.8/AV:N/ |rce=distros,cvss2=6.8/AV:N/
                   |AC:M/Au:N/C:P/I:P/A:P,rhel- |AC:M/Au:N/C:P/I:P/A:P,rhel-
                   |6/libyaml=affected,rhel-7/l |6/libyaml=affected,rhel-7/l
                   |ibyaml=affected,rhscl-1/rub |ibyaml=affected,rhscl-1/rub
                   |y193-libyaml=affected,rhscl |y193-libyaml=affected,rhscl
                   |-1/libyaml=affected,mrg-1/l |-1/libyaml=affected,mrg-1/l
                   |ibyaml=wontfix,mrg-2/libyam |ibyaml=wontfix,mrg-2/libyam
                   |l=wontfix,rhn_satellite_5.3 |l=wontfix,rhn_satellite_5.3
                   |/libyaml=affected,rhn_satel |/libyaml=wontfix,rhn_satell
                   |lite_5.4/libyaml=affected,r |ite_5.4/libyaml=wontfix,rhn
                   |hn_satellite_5.5/libyaml=af |_satellite_5.5/libyaml=wont
                   |fected,rhn_satellite_5.6/li |fix,rhn_satellite_5.6/libya
                   |byaml=affected,rhn_satellit |ml=affected,rhn_satellite_6
                   |e_6/libyaml=affected,rhui-2 |/libyaml=affected,rhui-2/li
                   |/libyaml=wontfix,sam-1/liby |byaml=wontfix,sam-1/libyaml
                   |aml=affected,cfme-5/mingw-l |=affected,cfme-5/mingw-liby
                   |ibyaml=wontfix,cfme-5/ruby1 |aml=wontfix,cfme-5/ruby193-
                   |93-libyaml=affected,opensta |libyaml=affected,openstack-
                   |ck-3/libyaml=affected,opens |3/libyaml=affected,openstac
                   |tack-3/ruby193-libyaml=affe |k-3/ruby193-libyaml=affecte
                   |cted,openstack-4/libyaml=af |d,openstack-4/libyaml=affec
                   |fected,openshift-enterprise |ted,openshift-enterprise-1/
                   |-1/ruby193-libyaml=wontfix, |ruby193-libyaml=wontfix,ope
                   |openshift-1/ruby193-libyaml |nshift-1/ruby193-libyaml=af
                   |=affected,fedora-all/libyam |fected,fedora-all/libyaml=a
                   |l=affected,epel-all/libyaml |ffected,epel-all/libyaml=af
                   |=affected,fedora-all/perl-Y |fected,fedora-all/perl-YAML
                   |AML-LibYAML=affected,epel-6 |-LibYAML=affected,epel-6/pe
                   |/perl-YAML-LibYAML=affected |rl-YAML-LibYAML=affected



-- 
You are receiving this mail because:
You are on the CC list for the bug.
Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=Ajmff1VBTE&a=cc_unsubscribe



More information about the perl-devel mailing list