CVE-2022-3064

Parsing malicious or large YAML documents can consume excessive amounts of CPU or memory.

CVE-2021-4235

Due to unbounded alias chasing, a maliciously crafted YAML file can cause the system to consume significant system resources. If parsing user input, this may be used as a denial of service vector.