libyaml@0.2.0 vulnerabilities

Bindings to libYAML

Direct Vulnerabilities

Known vulnerabilities in the libyaml package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • H
Heap-based Buffer Overflow

LibYAML, the library that libyaml provides bindings for is vulnerable to a heap-based buffer overflow when parsing YAML tags.

Source: Node Security Project

How to fix Heap-based Buffer Overflow?

Update to version 0.2.3 that includes a version of LibYAML that contains a fix for this issue.

<0.2.3
  • H
Heap-based Buffer Overflow

LibYAML, the library that libyaml provides bindings for is vulnerable to a heap-based buffer overflow when parsing YAML tags.

Source: Node Security Project

How to fix Heap-based Buffer Overflow?

Update to version 0.2.3 that includes a version of LibYAML that contains a fix for this issue.

<0.2.3