From 3cf7c3ef441822c889356fd1812ebf2944a59851 Mon Sep 17 00:00:00 2001 From: V3n3RiX Date: Tue, 25 Aug 2020 10:45:55 +0100 Subject: gentoo resync : 25.08.2020 --- metadata/glsa/glsa-202007-14.xml | 44 ++++++++++++++++++++++++++++++++++++++++ 1 file changed, 44 insertions(+) create mode 100644 metadata/glsa/glsa-202007-14.xml (limited to 'metadata/glsa/glsa-202007-14.xml') diff --git a/metadata/glsa/glsa-202007-14.xml b/metadata/glsa/glsa-202007-14.xml new file mode 100644 index 000000000000..6fe7f34940eb --- /dev/null +++ b/metadata/glsa/glsa-202007-14.xml @@ -0,0 +1,44 @@ + + + + yaml-cpp: Denial of service + A vulnerability in yaml-cpp could lead to a Denial of Service + condition. + + yaml-cpp + 2020-07-26 + 2020-07-26 + 626662 + remote + + + 0.6.3-r2 + 0.6.3-r2 + + + +

yaml-cpp is a YAML parser and emitter in C++.

+ + +

The function Scanner::peek in scanner.cpp may have an assertion failure.

+ + +

An attacker could cause a possible Denial of Service condition.

+ + +

There is no known workaround at this time.

+ + +

All yaml-cpp users should upgrade to the latest version:

+ + + # emerge --sync + # emerge --ask --oneshot --verbose ">=dev-cpp/yaml-cpp-0.6.3-r2" + + + + CVE-2017-11692 + + sam_c + sam_c + -- cgit v1.2.3