Information on source package pyyaml

Available versions

ReleaseVersion
stretch3.12-1
buster3.13-2
bullseye5.3.1-3
sid5.3.1-3

Open issues

BugstretchbusterbullseyesidDescription
CVE-2020-14343fixedfixedvulnerablevulnerable.load() and FullLoader still vulnerable to fairly trivial RCE

Open unimportant issues

BugstretchbusterbullseyesidDescription
CVE-2017-18342vulnerablevulnerablefixedfixedIn PyYAML before 5.1, the yaml.load() API could execute arbitrary code ...

Resolved issues

BugDescription
CVE-2020-1747A vulnerability was discovered in the PyYAML library in versions befor ...
CVE-2019-20477PyYAML 5.1 through 5.1.2 has insufficient restrictions on the load and ...
CVE-2014-9130scanner.c in LibYAML 0.1.5 and 0.1.6, as used in the YAML-LibYAML (aka ...

Security announcements

DSA / DLADescription
DLA-127-1pyyaml - security update
DSA-3115-1pyyaml - security update

Search for package or bug name: Reporting problems