Bug 1668104 (CVE-2019-6285) - CVE-2019-6285 yaml-cpp: DoS in SingleDocParser::HandleFlowSequence funtion
Summary: CVE-2019-6285 yaml-cpp: DoS in SingleDocParser::HandleFlowSequence funtion
Keywords:
Status: CLOSED ERRATA
Alias: CVE-2019-6285
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
low
low
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL:
Whiteboard:
: CVE-2018-20710 (view as bug list)
Depends On: 1668107 1668106 1676348 1676349 1676350 1678997 1678998 1694668 1694672 1694675
Blocks: 1665574
TreeView+ depends on / blocked
 
Reported: 2019-01-21 22:14 UTC by Laura Pardo
Modified: 2021-10-27 03:24 UTC (History)
9 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed: 2021-10-27 03:24:45 UTC


Attachments (Terms of Use)

Description Laura Pardo 2019-01-21 22:14:10 UTC
The SingleDocParser::HandleFlowSequence function in yaml-cpp (aka LibYaml-C++) 0.6.2 allows remote attackers to cause a denial of service (stack consumption and application crash) via a crafted YAML file.


References:
https://github.com/jbeder/yaml-cpp/issues/660

Comment 1 Laura Pardo 2019-01-21 22:15:53 UTC
Created yaml-cpp tracking bugs for this issue:

Affects: epel-all [bug 1668107]
Affects: fedora-all [bug 1668106]

Comment 4 Scott Gayou 2019-03-08 19:22:02 UTC
*** Bug 1686723 has been marked as a duplicate of this bug. ***

Comment 5 Stefan Cornelius 2019-04-01 11:34:43 UTC
This is very likely a dupe of CVE-2018-20573.

Comment 10 Yadnyawalk Tale 2020-08-11 14:38:27 UTC
Statement:

This issue affects the versions of rh-mongodb32-yaml-cpp, rh-mongodb34-yaml-cpp, and rh-mongodb36-yaml-cpp as shipped with Red Hat Software Collections. However, this is only used to parse configuration files.

Red Hat Satellite 6.5 ship yaml-cpp however has been rated as a security impact of Low, product version Satellite 6.6 onward is not affected. Satellite 6.5 is in Maintenance Support phase of the product life cycle and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Satellite 6 Life Cycle: https://access.redhat.com/support/policy/updates/satellite.


Note You need to log in before you can comment on or make changes to this bug.