Closed github-actions[bot] closed 1 year ago
org.yaml:snakeyaml is a YAML 1.1 parser and emitter for Java.
Affected versions of this package are vulnerable to Stack-based Buffer Overflow via stack overflow, when supplied with untrusted input.
Note: This vulnerability might not be fixed. Please refer to snakeyaml maintainers' recommendations for such vulnerabilities.
snakeyaml
There is no fixed version for org.yaml:snakeyaml.
org.yaml:snakeyaml
Overview
org.yaml:snakeyaml is a YAML 1.1 parser and emitter for Java.
Affected versions of this package are vulnerable to Stack-based Buffer Overflow via stack overflow, when supplied with untrusted input.
Note: This vulnerability might not be fixed. Please refer to
snakeyaml
maintainers' recommendations for such vulnerabilities.Remediation
There is no fixed version for
org.yaml:snakeyaml
.References