Information on source package snakeyaml

Available versions

ReleaseVersion
bullseye1.28-1+deb11u2
bookworm1.33-2
trixie1.33-2
sid1.33-2

Open unimportant issues

BugbullseyebookwormtrixiesidDescription
CVE-2022-41854vulnerablefixedfixedfixedThose using Snakeyaml to parse untrusted YAML files may be vulnerable ...
CVE-2022-38752vulnerablefixedfixedfixedUsing snakeYAML to parse untrusted YAML files may be vulnerable to Den ...
CVE-2022-1471vulnerablevulnerablevulnerablevulnerableSnakeYaml's Constructor() class does not restrict types which can be i ...

Resolved issues

BugDescription
CVE-2022-38751Using snakeYAML to parse untrusted YAML files may be vulnerable to Den ...
CVE-2022-38750Using snakeYAML to parse untrusted YAML files may be vulnerable to Den ...
CVE-2022-38749Using snakeYAML to parse untrusted YAML files may be vulnerable to Den ...
CVE-2022-25857The package org.yaml:snakeyaml from 0 and before 1.31 are vulnerable t ...
CVE-2017-18640The Alias feature in SnakeYAML before 1.26 allows entity expansion dur ...

Security announcements

DSA / DLADescription
DLA-3132-1snakeyaml - security update

Search for package or bug name: Reporting problems