Denial Of Service (DoS)

yaml is vulnerable to Denial of Service DoS attacks. According to the documentation, the parseDocument and parseAllDocuments functions should never raise an exception. However, an exception that comes from the prettifyError function is thrown when these functions are given erroneous input that...

Uncaught exception in document parsing functions

Description The parseDocument and parseAllDocuments functions should never throw according to the documentation. However, when these functions are fed an invalid input with a lot ≥80 of carriage return characters \r, an exception is thrown, which originates in the prettifyError function. Proof of...