[Bug 1078083] CVE-2014-2525 libyaml: heap-based buffer overflow when parsing URLs

bugzilla at redhat.com bugzilla at redhat.com
Thu Oct 15 21:40:57 UTC 2015 

https://bugzilla.redhat.com/show_bug.cgi?id=1078083

Vincent Danen <vdanen at redhat.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
         Whiteboard|impact=important,public=201 |impact=important,public=201
                   |40327,reported=20140318,sou |40327,reported=20140318,sou
                   |rce=distros,cvss2=6.8/AV:N/ |rce=distros,cvss2=6.8/AV:N/
                   |AC:M/Au:N/C:P/I:P/A:P,rhel- |AC:M/Au:N/C:P/I:P/A:P,rhel-
                   |6/libyaml=affected,rhel-7/l |6/libyaml=notaffected,rhel-
                   |ibyaml=notaffected,rhscl-1/ |7/libyaml=notaffected,rhscl
                   |ruby193-libyaml=affected,rh |-1/ruby193-libyaml=affected
                   |scl-1/libyaml=affected,mrg- |,rhscl-1/libyaml=affected,m
                   |1/libyaml=wontfix,mrg-2/lib |rg-1/libyaml=wontfix,mrg-2/
                   |yaml=wontfix,rhn_satellite_ |libyaml=wontfix,rhn_satelli
                   |5.3/libyaml=wontfix,rhn_sat |te_5.3/libyaml=wontfix,rhn_
                   |ellite_5.4/libyaml=wontfix, |satellite_5.4/libyaml=wontf
                   |rhn_satellite_5.5/libyaml=w |ix,rhn_satellite_5.5/libyam
                   |ontfix,rhn_satellite_5.6/li |l=wontfix,rhn_satellite_5.6
                   |byaml=affected,rhn_satellit |/libyaml=affected,rhn_satel
                   |e_6/libyaml=affected,rhui-2 |lite_6/libyaml=affected,rhu
                   |/libyaml=wontfix,sam-1/liby |i-2/libyaml=wontfix,sam-1/l
                   |aml=affected,cfme-5/mingw-l |ibyaml=affected,cfme-5/ming
                   |ibyaml=wontfix,cfme-5/ruby1 |w-libyaml=wontfix,cfme-5/ru
                   |93-libyaml=affected,opensta |by193-libyaml=affected,open
                   |ck-3/libyaml=affected,opens |stack-3/libyaml=affected,op
                   |tack-3/ruby193-libyaml=affe |enstack-3/ruby193-libyaml=a
                   |cted,openstack-4/libyaml=af |ffected,openstack-4/libyaml
                   |fected,openshift-enterprise |=affected,openshift-enterpr
                   |-1/ruby193-libyaml=wontfix, |ise-1/ruby193-libyaml=wontf
                   |openshift-1/ruby193-libyaml |ix,openshift-1/ruby193-liby
                   |=affected,fedora-all/libyam |aml=affected,fedora-all/lib
                   |l=affected,epel-all/libyaml |yaml=affected,epel-all/liby
                   |=affected,fedora-all/perl-Y |aml=affected,fedora-all/per
                   |AML-LibYAML=affected,epel-6 |l-YAML-LibYAML=affected,epe
                   |/perl-YAML-LibYAML=affected |l-6/perl-YAML-LibYAML=affec
                   |                            |ted



-- 
You are receiving this mail because:
You are on the CC list for the bug.

More information about the perl-devel mailing list