gopkg.in/yaml.v2 Denial of Service (DoS)

Question

gopkg.in/yaml.v2 Denial of Service (DoS)

jeffotoni opened this issue 4 years ago · 1 comments

People found a dependency with a vulnerability
github.com/dgraph-io/ristretto@v0.0.3
Fixed in
gopkg.in/yaml.v2@2.2.8
Exploit maturity
NO KNOWN EXPLOIT

gopkg.in/yaml.v2 Denial of Service (DoS)
VULNERABILITY
CWE-1050
CVE-2019-11254

Answer 1 · 2021-04-23T13:33:38.000Z

Use Discuss Issues for reporting issues about this repository.