Security update for perl-YAML-Syck (moderate)

openSUSE Security Update: Security update for perl-YAML-Syck Announcement ID: openSUSE-SU-2026:0180-1 Rating: moderate References: 1252111 1259757 Cross-References: CVE-2025-11683 CVE-2026-4177 CVSS scores: CVE-2025-11683 SUSE: 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Affected Products:...

perl-YAML-Syck-1.450.0-4.1 on GA media (moderate)

perl-YAML-Syck-1.450.0-4.1 on GA media Announcement ID: openSUSE-SU-2026:10846-1 Rating: moderate Cross-References: CVE-2026-5089 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the...

OPENSUSE-SU-2026:10846-1 perl-YAML-Syck-1.450.0-4.1 on GA media

These are all security issues fixed in the perl-YAML-Syck-1.450.0-4.1 package on the GA media of openSUSE Tumbleweed...

CVE-2026-5089

YAML::Syck versions before 1.38 for Perl has an out-of-bounds read. The base60 sexagesimal parsing code in perlsyck.h has a buffer underflow bug in both intbase60 and floatbase60 handlers. When processing the leftmost segment of a colon-separated value e.g., the 1 in 1:30:45, the inner while loop...

OPENSUSE-SU-2026:10746-1 perl-YAML-Syck-1.450.0-1.1 on GA media

These are all security issues fixed in the perl-YAML-Syck-1.450.0-1.1 package on the GA media of openSUSE Tumbleweed...

Astra Linux - уязвимость в libyaml-libyaml-perl

YAML-LibYAML prior to 0.903.0 for Perl uses 2-args open, allowing existing files to be modified...

Alibaba Cloud Linux 3 : 0073: perl-YAML-Syck (ALINUX3-SA-2026:0073)

The remote Alibaba Cloud Linux 3 host has a package installed that is affected by a vulnerability as referenced in the ALINUX3-SA-2026:0073 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2026-4177: YAML::Syck versions through 1.36 for...

RHSA-2026:8311 Red Hat Security Advisory: perl-YAML-Syck security update

Bulletin has no description...

Important: Red Hat Security Advisory: perl-YAML-Syck security update

An update for perl-YAML-Syck is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

OPENSUSE-SU-2026:10551-1 perl-YAML-Syck-1.440.0-1.1 on GA media

These are all security issues fixed in the perl-YAML-Syck-1.440.0-1.1 package on the GA media of openSUSE Tumbleweed...

perl-YAML-Syck security update

An update is available for perl-YAML-Syck. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list This module provides a Perl interface to the libsyck data serializatio...

RockyLinux 8 : perl-YAML-Syck (RLSA-2026:6470)

The remote RockyLinux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:6470 advisory. perl-YAML-Syck: YAML::Syck versions through 1.36 for Perl has several potential security vulnerabilities including a high-severity heap buffer overflow in the YAM...

MiracleLinux 8 : perl-YAML-Syck-1.30-6.el8_10 (AXSA:2026-405:01)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2026-405:01 advisory. perl-YAML-Syck: YAML::Syck versions through 1.36 for Perl has several potential security vulnerabilities including a high-severity heap buffer overflow in the...

AlmaLinux 8 : perl-YAML-Syck (ALSA-2026:6470)

The remote AlmaLinux 8 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2026:6470 advisory. perl-YAML-Syck: YAML::Syck versions through 1.36 for Perl has several potential security vulnerabilities including a high-severity heap buffer overflow in the YAML...

Oracle Linux 8 : perl-YAML-Syck (ELSA-2026-6470)

The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2026-6470 advisory. 1.30-6 - Resolves: RHEL-156475 - Fix CVE-2026-4177 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note...

RHEL 8 : perl-YAML-Syck (RHSA-2026:6470)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2026:6470 advisory. This module provides a Perl interface to the libsyck data serialization library. It exports the Dump and Load functions for converting Perl data...

perl-YAML-Syck security update

1.30-6 - Resolves: RHEL-156475 - Fix CVE-2026-4177...

Important: Red Hat Security Advisory: perl-YAML-Syck security update

An update for perl-YAML-Syck is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

perl-YAML-Syck: YAML::Syck versions through 1.36 for Perl has several potential security vulnerabilities including a high-severity heap buffer overflow in the YAML emitter

Multiple security issues have been discovered in the perl YAML::Syck module. A heap overflow occurs when class names exceed the initial 512-byte allocation, a base64 decoder could read past the buffer end on trailing newlines. strtok mutated n-typeid in place, corrupting shared node data, and a...

Important: perl-YAML-Syck

Issue Overview: YAML::Syck versions through 1.36 for Perl has several potential security vulnerabilities including a high-severity heap buffer overflow in the YAML emitter. The heap overflow occurs when class names exceed the initial 512-byte allocation. The base64 decoder could read past the...