Closed kwin closed 1 year ago
There is still the unclosed https://bitbucket.org/snakeyaml/snakeyaml/issues/531/stackoverflow-oss-fuzz-47081 (CVE-2022-38752. Probably needs to be marked as false-positive... Compare also with https://bitbucket.org/snakeyaml/snakeyaml/wiki/CVE%20&%20NIST
All known vulnerabilities are fixed with SnakeYAML 1.32 which has been included now.
The following vulnerabilities are fixed in 1.32: