Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2024-3205HistoryApr 02, 2024 - 11:15 p.m.
CVE-2024-3205
2024-04-0223:15:54
Debian Security Bug Tracker
security-tracker.debian.org
6
yaml
libyaml
vulnerability
buffer overflow
heap-based
remote attack
disclosure
A vulnerability was found in yaml libyaml up to 0.2.5 and classified as critical. Affected by this issue is the function yaml_emitter_emit_flow_sequence_item of the file /src/libyaml/src/emitter.c. The manipulation leads to heap-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-259052. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | libyaml | <= 0.2.5-1 | libyaml_0.2.5-1_all.deb |
| Debian | 11 | all | libyaml | <= 0.2.2-1 | libyaml_0.2.2-1_all.deb |
| Debian | 10 | all | libyaml | <= 0.2.1-1 | libyaml_0.2.1-1_all.deb |
| Debian | 999 | all | libyaml | <= 0.2.5-1 | libyaml_0.2.5-1_all.deb |
| Debian | 13 | all | libyaml | <= 0.2.5-1 | libyaml_0.2.5-1_all.deb |
Related
nessus
nessus
RHEL 6 : libyaml (Unpatched Vulnerability)
2024-05-11 00:00:00
EulerOS 2.0 SP11 : libyaml (EulerOS-SA-2024-1838)
2024-06-25 00:00:00
RHEL 7 : libyaml (Unpatched Vulnerability)
2024-05-11 00:00:00
ubuntucve
ubuntucve
CVE-2024-3205
2024-04-02 00:00:00
cve
cve
CVE-2024-3205
2024-04-02 23:15:54
nvd
nvd
CVE-2024-3205
2024-04-02 23:15:54
openvas
openvas
Huawei EulerOS: Security Advisory for libyaml (EulerOS-SA-2024-1838)
2024-06-25 00:00:00
Huawei EulerOS: Security Advisory for libyaml (EulerOS-SA-2024-1817)
2024-06-25 00:00:00
redhatcve
redhatcve
CVE-2024-3205
2024-04-03 05:35:59
cvelist
cvelist
CVE-2024-3205
2024-04-02 22:31:05
