[SECURITY] [DLA 110-1] libyaml security update

2014-12-14T13:52:01
ID DEBIAN:DLA-110-1:AFE46
Type debian
Reporter Debian
Modified 2014-12-14T13:52:01

Description

Package : libyaml Version : 0.1.3-1+deb6u5 CVE ID : CVE-2014-9130 Debian Bug : 771366

Jonathan Gray and Stanislaw Pitucha found an assertion failure in the way wrapped strings are parsed in LibYAML, a fast YAML 1.1 parser and emitter library. An attacker able to load specially crafted YAML input into an application using libyaml could cause the application to crash.