Security Advisory

CVE-2013-6393

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2014-02-06 22:00:00

Last updated 2024-08-06 17:39:01

Assigner redhat

State PUBLISHED

Description

The yaml_parser_scan_tag_uri function in scanner.c in LibYAML before 0.1.5 performs an incorrect cast, which allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via crafted tags in a YAML document, which triggers a heap-based buffer overflow.

← Browse all CVEs View on cve.org ↗