CVE-2024-35325

NameCVE-2024-35325
DescriptionA vulnerability was found in libyaml up to 0.2.5. Affected by this issue is the function yaml_event_delete of the file /src/libyaml/src/api.c. The manipulation leads to a double-free.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)

Notes

NOT-FOR-US: libyaml non issue (misuse of API is not a vulerability)
https://github.com/yaml/libyaml/issues/297

Search for package or bug name: Reporting problems