| Bug | buster | bullseye | bookworm | sid | Description |
|---|
| CVE-2022-41854 | vulnerable | vulnerable | vulnerable | vulnerable | Those using Snakeyaml to parse untrusted YAML files may be vulnerable ... |
| CVE-2022-38751 | fixed | vulnerable (no DSA) | fixed | fixed | Using snakeYAML to parse untrusted YAML files may be vulnerable to Den ... |
| CVE-2022-38750 | fixed | vulnerable (no DSA) | fixed | fixed | Using snakeYAML to parse untrusted YAML files may be vulnerable to Den ... |
| CVE-2022-38749 | fixed | vulnerable (no DSA) | fixed | fixed | Using snakeYAML to parse untrusted YAML files may be vulnerable to Den ... |
| CVE-2022-25857 | fixed | vulnerable (no DSA) | fixed | fixed | The package org.yaml:snakeyaml from 0 and before 1.31 are vulnerable t ... |
| CVE-2022-1471 | vulnerable | vulnerable | vulnerable | vulnerable | SnakeYaml's Constructor() class does not restrict types which can be i ... |
| CVE-2017-18640 | vulnerable (no DSA) | fixed | fixed | fixed | The Alias feature in SnakeYAML before 1.26 allows entity expansion dur ... |