[Bug 1078083] CVE-2014-2525 libyaml: heap-based buffer overflow when parsing URLs

bugzilla at redhat.com bugzilla at redhat.com
Tue Oct 28 23:06:07 UTC 2014 

https://bugzilla.redhat.com/show_bug.cgi?id=1078083

Kurt Seifried <kseifried at redhat.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
         Whiteboard|impact=important,public=201 |impact=important,public=201
                   |40327,reported=20140318,sou |40327,reported=20140318,sou
                   |rce=distros,cvss2=6.8/AV:N/ |rce=distros,cvss2=6.8/AV:N/
                   |AC:M/Au:N/C:P/I:P/A:P,rhel- |AC:M/Au:N/C:P/I:P/A:P,rhel-
                   |6/libyaml=affected,rhel-7/l |6/libyaml=affected,rhel-7/l
                   |ibyaml=affected,rhscl-1/rub |ibyaml=affected,rhscl-1/rub
                   |y193-libyaml=affected,rhscl |y193-libyaml=affected,rhscl
                   |-1/libyaml=affected,mrg-1/l |-1/libyaml=affected,mrg-1/l
                   |ibyaml=wontfix,mrg-2/libyam |ibyaml=wontfix,mrg-2/libyam
                   |l=wontfix,rhn_satellite_5.3 |l=wontfix,rhn_satellite_5.3
                   |/libyaml=affected,rhn_satel |/libyaml=affected,rhn_satel
                   |lite_5.4/libyaml=affected,r |lite_5.4/libyaml=affected,r
                   |hn_satellite_5.5/libyaml=af |hn_satellite_5.5/libyaml=af
                   |fected,rhn_satellite_5.6/li |fected,rhn_satellite_5.6/li
                   |byaml=affected,rhn_satellit |byaml=affected,rhn_satellit
                   |e_6/libyaml=affected,rhui-2 |e_6/libyaml=affected,rhui-2
                   |/libyaml=wontfix,sam-1/liby |/libyaml=wontfix,sam-1/liby
                   |aml=defer,cfme-5/mingw-liby |aml=defer,cfme-5/mingw-liby
                   |aml=defer,cfme-5/ruby193-li |aml=defer,cfme-5/ruby193-li
                   |byaml=defer,openstack-3/lib |byaml=defer,openstack-3/lib
                   |yaml=affected,openstack-3/r |yaml=affected,openstack-3/r
                   |uby193-libyaml=affected,ope |uby193-libyaml=affected,ope
                   |nstack-4/libyaml=affected,o |nstack-4/libyaml=affected,o
                   |penshift-enterprise-1/ruby1 |penshift-enterprise-1/ruby1
                   |93-libyaml=defer,openshift- |93-libyaml=wontfix,openshif
                   |1/ruby193-libyaml=affected, |t-1/ruby193-libyaml=affecte
                   |fedora-all/libyaml=affected |d,fedora-all/libyaml=affect
                   |,epel-all/libyaml=affected, |ed,epel-all/libyaml=affecte
                   |fedora-all/perl-YAML-LibYAM |d,fedora-all/perl-YAML-LibY
                   |L=affected,epel-6/perl-YAML |AML=affected,epel-6/perl-YA
                   |-LibYAML=affected           |ML-LibYAML=affected



-- 
You are receiving this mail because:
You are on the CC list for the bug.
Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=9EI4ONfEvS&a=cc_unsubscribe

More information about the perl-devel mailing list