Lucene search
Veracode Vulnerability DatabaseVERACODE:47566HistoryJun 17, 2024 - 6:54 a.m.
Heap Buffer Overflow
2024-06-1706:54:37
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
libyaml
vulnerability
heap buffer overflow
initialization
emitter
code execution
developer error
LibYAML is vulnerable to Heap buffer overflow. The vulnerability is due to the lack of proper initialization of the emitter when yaml_emitter_emit is called without yaml_emitter_initialize. An attacker can exploit this vulnerability by providing specially crafted inputs to trigger the overflow, potentially leading to arbitrary code execution. Note that there is no known exploit, and the vulnerability relies on a developer error when calling yaml_emitter_emit without yaml_emitter_initialize.
Related
nvd
nvd
CVE-2024-35326
2024-06-13 17:15:50
cvelist
cvelist
CVE-2024-35326
2024-06-13 00:00:00
cve
cve
CVE-2024-35326
2024-06-13 17:15:50
redhatcve
redhatcve
CVE-2024-35326
2024-06-14 06:12:33
vulnrichment
vulnrichment
CVE-2024-35326
2024-06-13 00:00:00
osv
osv
CVE-2024-35326
2024-06-13 17:15:50
ubuntucve
ubuntucve
CVE-2024-35326
2024-06-13 00:00:00
ibm
ibm
Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data v4.8.5 is vulnerable to multiple Operator package issues
2024-08-29 17:39:12