SUSE CVE-2014-9130

scanner.c in LibYAML 0.1.5 and 0.1.6, as used in the YAML-LibYAML aka YAML-XS module for Perl, allows context-dependent attackers to cause a denial of service assertion failure and crash via vectors involving line-wrapping...

LibYAML Scanner yaml_parser_scan_uri_escapes Heap Buffer Overflow - ver 2 (CVE-2014-2525)

A heap buffer overflow vulnerability has been reported in LibYAML's scanner. This vulnerability is due to insufficient validation of percent encoded text in the URI of tags within YAML documents. A remote attacker can exploit this vulnerability by providing a specially crafted YAML document...