Ubuntu Update For Libyaml-libyaml-perl USN-2161-1 Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

Florian Weimer discovered that libyaml-libyaml-perl incorrectly handled certain large YAML documents. An attacker could use this issue to cause libyaml-libyaml-perl to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2013-6393) Ivan Fratric discovered that libyaml-libyaml-perl incorrectly handled certain malformed YAML documents. An attacker could use this issue to cause libyaml-libyaml-perl to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2014-2525)

Affected

libyaml-libyaml-perl on Ubuntu 13.10 , Ubuntu 12.10 , Ubuntu 12.04 LTS

Severity

Classification

CVE CVE-2013-6393, CVE-2014-2525
CVSS Base Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Ubuntu Update for apache2 vulnerabilities USN-499-1
Ubuntu Update for aptdaemon vulnerability USN-1068-1
Ubuntu Update for bind9 vulnerability USN-491-1
Ubuntu Update for cups-filters USN-2143-1
Ubuntu Update for apt USN-2353-1

Ubuntu Update for libyaml-libyaml-perl USN-2161-1

Take action and discover your vulnerabilities