CVE-2014-9130 @ Python-PyYAML-3.12

**Vulnerable Package** issue exists @ **Python\-PyYAML\-3.12** in branch **main**

scanner.c in LibYAML through 0.1.6, as used in the YAML-LibYAML (aka YAML-XS) module for Perl, allows context-dependent attackers to cause a denial of service (assertion failure and crash) via vectors involving line-wrapping.

**Namespace:** pedrompflopes
**Repository:** small-project
**Repository Url:** https://github.com/pedrompflopes/small-project
**CxAST\-Project:** pedrompflopes/small-project
**CxAST platform scan:** [c8ffe959\-aafe\-486d\-a7e7\-1ba92f6aee49](https://rc.dev.cxast.net/projects/67f6816c-b694-486c-9962-3e11e1ab95bf/scans?id=c8ffe959-aafe-486d-a7e7-1ba92f6aee49&branch=main)
**Branch:** main
**Application:** small-project
**Severity:** MEDIUM
**State:** TO_VERIFY
**Status:** RECURRENT
**CWE:** CWE-20


----
**Additional Info**
**Attack vector:** NETWORK
**Attack complexity:** LOW
**Confidentiality impact:** NONE
**Availability impact:** PARTIAL
**Remediation Upgrade Recommendation:** 5.4


----
**References**
[Commit](https://github.com/yaml/libyaml/commit/e6aa721cc0e5a48f408c52355559fd36780ba32a)
[Advisory](https://puppet.com/security/cve/cve-2014-9130/)
[Issue](https://bugzilla.redhat.com/show_bug.cgi?id=1169369)
[Mail Thread](https://www.openwall.com/lists/oss-security/2014/11/28/1)


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

CVE-2014-9130 @ Python-PyYAML-3.12 #30

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

CVE-2014-9130 @ Python-PyYAML-3.12 #30

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions