Explore top 10 tips to secure your open-source projects now. Read More
×
Applications using libyaml-libyaml-perl could be made to crash if
they received specially crafted input.
Software Description:
- libyaml-libyaml-perl: Perl interface to libyaml, a YAML implementation
Details:
Stanisław Pitucha and Jonathan Gray discovered that
libyaml-libyaml-perl did not properly handle wrapped strings. An
attacker could create specially crafted YAML data to trigger an assert,
causing a denial of service.
The problem can be corrected by updating your system to the following package versions: Ubuntu 14.10: libyaml-libyaml-perl 0.41-5ubuntu0.14.10.1 Ubuntu 14.04 LTS: libyaml-libyaml-perl 0.41-5ubuntu0.14.04.1 Ubuntu 12.04 LTS: libyaml-libyaml-perl 0.38-2ubuntu0.2 After a standard system update you need to restart applications using libyaml-libyaml-perl to make all the necessary changes.
https://ubuntu.com/security/notices/USN-2461-2
CVE-2014-9130
Get the latest Linux and open source security news straight to your inbox.