search

JLLeitschuh / security-research

Public disclosure channel for security vulnerabilities
Creative Commons Zero v1.0 Universal
16 stars 6 forks source link

Explain 'secure by default' #19

Open asomov opened 1 year ago

asomov commented 1 year ago

Can you please help to explain the case to help others: https://bitbucket.org/snakeyaml/snakeyaml/issues/569/cve-2022-41854-is-still-exploitable-on

JLLeitschuh commented 1 year ago

I think I did, but by posing questions. Let me know if that's not sufficient