Ubuntu 5944-1: SnakeYAML vulnerabilities
Mar10
on March 10, 2023
at 11:07 am
Posted In: Uncategorized
Several security issues were fixed in SnakeYAML.
Comment
Several security issues were fixed in SnakeYAML.
**Redis 6.2.11** – Released Tue Feb 28 12:00:00 IST 2023 Upgrade urgency: SECURITY, contains fixes to security issues. Security Fixes: * (**CVE-2023-25155**) Specially crafted SRANDMEMBER, ZRANDMEMBER, and HRANDFIELD commands can trigger an integer overflow, resulting in a runtime assertion and termination of the Redis server process. * (**CVE-2022-36021**) String matching
Backport of upstream fix for CVE-2022-29718.
59 queries. 8.5 mb Memory usage. 1.348 seconds.