4 matches found
MGASA-2020-0275 Updated perl-YAML packages fix security vulnerability
Updated perl-YAML package fixes security vulnerability: This update enforces that $LoadCode must be enabled to use the feature of evaluating typeglobs, because with the typeglob feature you would be able to set the variable $YAML::LoadCode from a YAML file, and that would be a security issue. The...
Updated perl-YAML packages fix security vulnerability
Updated perl-YAML package fixes security vulnerability: This update enforces that $LoadCode must be enabled to use the feature of evaluating typeglobs, because with the typeglob feature you would be able to set the variable $YAML::LoadCode from a YAML file, and that would be a security issue. The...
UBUNTU-CVE-2017-6387
The dexloadcode function in libr/bin/p/bindex.c in radare2 1.2.1 allows remote attackers to cause a denial of service out-of-bounds read and application crash via a crafted DEX file...
radare2 denial of service vulnerability (CNVD-2017-02720)
radare2 is a set of libraries and tools for working with binary files. A security vulnerability exists in the 'dexloadcode' function in the libr/bin/p/bindex.c file in radare2 version 1.2.1. A remote attacker can exploit this vulnerability to cause a denial of service out-of-bounds read and...