On Fri, 28 Nov 2014, Salvatore Bonaccorso wrote:
> An assert is triggered by wrapped strings, see [1,2,3]. Proposed commit
> in [4] comments out the assertion and let the parser fail. CVE-2014-9130
> was assigned for this reachable assertion in scanner.c.
>
> [1]
> https://bitbucket.org/xi/lib
Source: libyaml
Version: 0.1.4-2
Severity: important
Tags: security upstream patch
Hi,
An assert is triggered by wrapped strings, see [1,2,3]. Proposed commit
in [4] comments out the assertion and let the parser fail.
CVE-2014-9130 was assigned for this reachable assertion in scanner.c.
[1]
ht
2 matches
Mail list logo
