SUSE-SU-2023:1740-3 -- SLES yaml-cpp, libyaml-cpp0_6ID: oval:org.secpod.oval:def:89048580 | Date: (C)2023-04-08 (M)2023-04-08 |
Class: PATCH | Family: unix |
This update for yaml-cpp fixes the following issues: * CVE-2018-20573: Fixed remote DOS via a crafted YAML file in function Scanner:EnsureTokensInQueue . * CVE-2018-20574: Fixed remote DOS via a crafted YAML file in function SingleDocParser:HandleFlowMap . * CVE-2019-6285: Fixed remote DOS via a crafted YAML file in function SingleDocParser::HandleFlowSequence . * CVE-2019-6292: Fixed DOS by stack consumption in singledocparser.cpp .
Platform: |
SUSE Linux Enterprise Server 15 SP2 |
Product: |
yaml-cpp |
libyaml-cpp0_6 |