subject:"Bug#966233\: pyyaml\: CVE\-2020\-14343"

Bug#966233: pyyaml: CVE-2020-14343

2021-01-15 Thread Salvatore Bonaccorso

Hi, On Sat, Jul 25, 2020 at 09:32:25AM +0200, Salvatore Bonaccorso wrote: > Source: pyyaml > Version: 5.3.1-2 > Severity: important > Tags: security upstream > Forwarded: https://github.com/yaml/pyyaml/issues/420 > X-Debbugs-Cc: Debian Security Team > > Hi, > > The following vulnerability was

Bug#966233: pyyaml: CVE-2020-14343

2020-07-25 Thread Salvatore Bonaccorso

Source: pyyaml Version: 5.3.1-2 Severity: important Tags: security upstream Forwarded: https://github.com/yaml/pyyaml/issues/420 X-Debbugs-Cc: Debian Security Team Hi, The following vulnerability was published for pyyaml. CVE-2020-14343[0]: | .load() and FullLoader still vulnerable to fairly