On December 11, 2014 6:37:51 AM EST, Moritz Muehlenhoff <[email protected]> wrote: >Package: pyyaml >Severity: grave >Tags: security > >Hi, >CVE-2014-9130 from libyaml also affects pyyaml. I'm attaching a short >reproducer.
I'm away from any computer I could test this on today. Is this still a problem with a fixed libyaml? Our pyyaml is built against it and I thought didn't use the internal parser. Scott K -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
