Lucene search
Redhat.comRH:CVE-2024-3205HistoryApr 03, 2024 - 5:35 a.m.
CVE-2024-3205
2024-04-0305:35:59
redhat.com
access.redhat.com
31
cve-2024-3205
yaml file
heap-based buffer over-read
yaml_emitter_emit_flow_sequence_item
denial of service
untrusted sources
0.0004 Low
EPSS
Percentile
9.1%
A flaw was found in the libyaml library. A specially crafted YAML file can cause a heap-based buffer over-read in the yaml_emitter_emit_flow_sequence_item function in the src/emitter.c file, resulting in denial of service in the application linked to the library.
Mitigation
Applications that do not parse files from untrusted sources will not be vulnerable to this vulnerability.
Related
debiancve
debiancve
CVE-2024-3205
2024-04-02 23:15:54
nessus
nessus
EulerOS 2.0 SP11 : libyaml (EulerOS-SA-2024-1838)
2024-06-25 00:00:00
RHEL 6 : libyaml (Unpatched Vulnerability)
2024-05-11 00:00:00
RHEL 7 : libyaml (Unpatched Vulnerability)
2024-05-11 00:00:00
ubuntucve
ubuntucve
CVE-2024-3205
2024-04-02 00:00:00
cve
cve
CVE-2024-3205
2024-04-02 23:15:54
nvd
nvd
CVE-2024-3205
2024-04-02 23:15:54
openvas
openvas
Huawei EulerOS: Security Advisory for libyaml (EulerOS-SA-2024-1838)
2024-06-25 00:00:00
Huawei EulerOS: Security Advisory for libyaml (EulerOS-SA-2024-1817)
2024-06-25 00:00:00
cvelist
cvelist
CVE-2024-3205
2024-04-02 22:31:05
