Summary
Check the version of pyyaml
Solution
Please Install the Updated Packages.
Insight
Stanisł aw Pitucha and Jonathan Gray
discovered that PyYAML did not properly handle wrapped strings. An attacker could create specially crafted YAML data to trigger an assert, causing a denial of service.
Affected
pyyaml on Ubuntu 14.10 ,
Ubuntu 14.04 LTS ,
Ubuntu 12.04 LTS
Detection
Get the installed version with the help of
detect NVT and check if the version is vulnerable or not.
Severity
Classification
-
CVE CVE-2014-9130 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related Vulnerabilities