User: Password:
Subscribe / Log in / New account

Fedora alert FEDORA-2014-1851 (libyaml)

Subject:  [SECURITY] Fedora 20 Update: libyaml-0.1.4-6.fc20
Date:  Sat, 08 Feb 2014 05:00:26 +0000
Message-ID:  <>

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2014-1851 2014-01-31 03:00:04 -------------------------------------------------------------------------------- Name : libyaml Product : Fedora 20 Version : 0.1.4 Release : 6.fc20 URL : Summary : YAML 1.1 parser and emitter written in C Description : YAML is a data serialization format designed for human readability and interaction with scripting languages. LibYAML is a YAML parser and emitter written in C. -------------------------------------------------------------------------------- Update Information: Add patches for CVE-2013-6393 (bz1033990) -------------------------------------------------------------------------------- ChangeLog: * Wed Jan 29 2014 John Eckersberg <> - 0.1.4-6 - Add patches for CVE-2013-6393 (bz1033990) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1033990 - CVE-2013-6393 libyaml: heap-based buffer overflow when parsing YAML tags -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update libyaml' at the command line. For more information, refer to "Managing Software with yum", available at All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list

(Log in to post comments)

Copyright © 2018, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds