Low: perl-YAML-LibYAML

🗓️ 30 Apr 2012 00:00:00Reported by AmazonType

Multiple format string vulnerabilities in perl-YAML-LibYAML module 0.38 allow remote attackers to cause denial of service via format string specifiers in YAML stream to the Load function, YAML node to load_node function, YAML mapping to load_mapping function, or YAML sequence to load_sequence function

Reporter	Title	Published	Views	Family All 33
Tenable Nessus	Amazon Linux AMI : perl-YAML-LibYAML (ALAS-2012-69)	4 Sep 201300:00	–	nessus
Tenable Nessus	Debian DSA-2432-1 : libyaml-libyaml-perl - format string vulnerabilities	13 Mar 201200:00	–	nessus
Tenable Nessus	Fedora 17 : perl-YAML-LibYAML-0.38-2.fc17 (2012-4871)	12 Apr 201200:00	–	nessus
Tenable Nessus	Fedora 15 : perl-YAML-LibYAML-0.38-2.fc15 (2012-4997)	9 Apr 201200:00	–	nessus
Tenable Nessus	Fedora 16 : perl-YAML-LibYAML-0.38-2.fc16 (2012-5035)	9 Apr 201200:00	–	nessus
Tenable Nessus	openSUSE Security Update : perl-YAML-LibYAML (openSUSE-SU-2012:1000-1)	13 Jun 201400:00	–	nessus
Tenable Nessus	openSUSE Security Update : perl-YAML-LibYAML (openSUSE-2015-162)	20 Feb 201500:00	–	nessus
CVE	CVE-2012-1152	9 Sep 201221:00	–	cve
Cvelist	CVE-2012-1152	9 Sep 201221:00	–	cvelist
Debian	[SECURITY] [DSA 2432-1] libyaml-libyaml-perl security update	12 Mar 201217:56	–	debian

OS	OS Version	Architecture	Package	Package Version	Filename
Amazon Linux	1	i686	perl-yaml-libyaml	0.38-2.2.amzn1	perl-YAML-LibYAML-0.38-2.2.amzn1.i686.rpm
Amazon Linux	1	x86_64	perl-yaml-libyaml	0.38-2.2.amzn1	perl-YAML-LibYAML-0.38-2.2.amzn1.x86_64.rpm
Amazon Linux	1	i686	perl-yaml-libyaml-debuginfo	0.38-2.2.amzn1	perl-YAML-LibYAML-debuginfo-0.38-2.2.amzn1.i686.rpm
Amazon Linux	1	x86_64	perl-yaml-libyaml-debuginfo	0.38-2.2.amzn1	perl-YAML-LibYAML-debuginfo-0.38-2.2.amzn1.x86_64.rpm

14 Sep 2014 00:00Current

6.9Medium risk

Vulners AI Score6.9

CVSS 25

EPSS0.03855