[Bug 1081382] New: CVE-2014-2525 perl-YAML-LibYAML: libyaml: heap-based buffer overflow when parsing URLs [fedora-all]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



https://bugzilla.redhat.com/show_bug.cgi?id=1081382

            Bug ID: 1081382
           Summary: CVE-2014-2525 perl-YAML-LibYAML: libyaml: heap-based
                    buffer overflow when parsing URLs [fedora-all]
           Product: Fedora
           Version: 20
         Component: perl-YAML-LibYAML
          Keywords: Security, SecurityTracking
          Severity: high
          Priority: high
          Assignee: jplesnik@xxxxxxxxxx
          Reporter: mmcallis@xxxxxxxxxx
        QA Contact: extras-qa@xxxxxxxxxxxxxxxxx
                CC: jplesnik@xxxxxxxxxx, paul@xxxxxxxxxxxx,
                    perl-devel@xxxxxxxxxxxxxxxxxxxxxxx
            Blocks: 1078083 (CVE-2014-2525)




This is an automatically created tracking bug!  It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora.

For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.

For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs

When creating a Bodhi update request, please use the bodhi submission link
noted in the next comment(s).  This will include the bug IDs of this
tracking bug as well as the relevant top-level CVE bugs.

Please also mention the CVE IDs being fixed in the RPM changelog and the
Bodhi notes field when available.

Please note: this issue affects multiple supported versions of Fedora.
Only one tracking bug has been filed; please ensure that it is only closed
when all affected versions are fixed.

[bug automatically created by: add-tracking-bugs]


Referenced Bugs:

https://bugzilla.redhat.com/show_bug.cgi?id=1078083
[Bug 1078083] CVE-2014-2525 libyaml: heap-based buffer overflow when
parsing URLs
-- 
You are receiving this mail because:
You are on the CC list for the bug.
Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=nP9BkZTLpk&a=cc_unsubscribe
--
Fedora Extras Perl SIG
http://www.fedoraproject.org/wiki/Extras/SIGs/Perl
perl-devel mailing list
perl-devel@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/perl-devel





[Index of Archives]     [Fedora Announce]     [Fedora Kernel]     [Fedora Testing]     [Fedora Legacy Announce]     [Fedora PHP Devel]     [Kernel Devel]     [Fedora Legacy]     [Fedora Maintainers]     [Fedora Desktop]     [PAM]     [Red Hat Development]     [Big List of Linux Books]     [Gimp]     [Yosemite Information]
  Powered by Linux