Ubuntu Update For Libyaml-libyaml-perl USN-2161-1 Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

Florian Weimer discovered that libyaml-libyaml-perl incorrectly handled certain large YAML documents. An attacker could use this issue to cause libyaml-libyaml-perl to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2013-6393) Ivan Fratric discovered that libyaml-libyaml-perl incorrectly handled certain malformed YAML documents. An attacker could use this issue to cause libyaml-libyaml-perl to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2014-2525)

Affected

libyaml-libyaml-perl on Ubuntu 13.10 , Ubuntu 12.10 , Ubuntu 12.04 LTS

Severity

Classification

CVE CVE-2013-6393, CVE-2014-2525

CVSS	Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Ubuntu Update for aptdaemon USN-1414-1
Ubuntu Update for apache2 USN-1259-1
Ubuntu Update for apache2 USN-2152-1
Ubuntu Update for compiz-fusion-plugins-main vulnerability USN-688-1
Ubuntu Update for dovecot vulnerabilities USN-1059-1

Ubuntu Update for libyaml-libyaml-perl USN-2161-1

Take action and discover your vulnerabilities