<html>

    <head>

      <base href="https://bugzilla.rosalinux.ru/">

    </head>

    <body><table border="1" cellspacing="0" cellpadding="8">

        <tr>

          <th>Platform</th>

          <td>2021.1

          </td>

        </tr>

        <tr>

          <th>Bug ID</th>

          <td><a class="bz_bug_link 

          bz_status_CONFIRMED "

   title="CONFIRMED - [CVE 21] snakeyaml 1.25 CVEs found"

   href="https://bugzilla.rosalinux.ru/show_bug.cgi?id=13314">13314</a>

          </td>

        </tr>

        <tr>

          <th>Summary</th>

          <td>[CVE 21] snakeyaml 1.25  CVEs found

          </td>

        </tr>

        <tr>

          <th>Classification</th>

          <td>ROSA-based products

          </td>

        </tr>

        <tr>

          <th>Product</th>

          <td>ROSA Fresh

          </td>

        </tr>

        <tr>

          <th>Version</th>

          <td>All

          </td>

        </tr>

        <tr>

          <th>Hardware</th>

          <td>All

          </td>

        </tr>

        <tr>

          <th>URL</th>

          <td>CVE-2017-18640, CVE-2022-1471, CVE-2022-25857, CVE-2022-38749, CVE-2022-38750, CVE-2022-38751, CVE-2022-38752, CVE-2022-41854,

          </td>

        </tr>

        <tr>

          <th>OS</th>

          <td>Linux

          </td>

        </tr>

        <tr>

          <th>Status</th>

          <td>CONFIRMED

          </td>

        </tr>

        <tr>

          <th>Severity</th>

          <td>normal

          </td>

        </tr>

        <tr>

          <th>Priority</th>

          <td>Normal

          </td>

        </tr>

        <tr>

          <th>Component</th>

          <td>System (kernel, glibc, systemd, bash, PAM...)

          </td>

        </tr>

        <tr>

          <th>Assignee</th>

          <td>bugs&#64;lists.rosalinux.ru

          </td>

        </tr>

        <tr>

          <th>Reporter</th>

          <td>y.tumanov&#64;rosalinux.ru

          </td>

        </tr>

        <tr>

          <th>QA Contact</th>

          <td>bugs&#64;lists.rosalinux.ru

          </td>

        </tr>

        <tr>

          <th>CC</th>

          <td>s.matveev&#64;rosalinux.ru, y.tumanov&#64;rosalinux.ru

          </td>

        </tr>

        <tr>

          <th>Target Milestone</th>

          <td>---

          </td>

        </tr>

        <tr>

          <th>Flags</th>

          <td>secteam_verified?

          </td>

        </tr></table>

      <p>

        <div>

        <pre>Please patch CVEs for package snakeyaml version 1.25

INFO (CVEs are): snakeyaml 1.25

 cves found

CVE-2017-18640

Desc: The Alias feature in SnakeYAML before 1.26 allows entity expansion during

a load operation, a related issue to CVE-2003-1564.

Link: <a href="https://nvd.nist.gov/vuln/detail/CVE-2017-18640">https://nvd.nist.gov/vuln/detail/CVE-2017-18640</a>

Severity: HIGH

CVE-2022-1471

Desc: SnakeYaml's Constructor() class does not restrict types which can be

instantiated during deserialization. Deserializing yaml content provided by an

attacker can lead to remote code execution. We recommend using SnakeYaml's

SafeConsturctor when parsing untrusted content to restrict deserialization. We

recommend upgrading to version 2.0 and beyond.

Link: <a href="https://nvd.nist.gov/vuln/detail/CVE-2022-1471">https://nvd.nist.gov/vuln/detail/CVE-2022-1471</a>

Severity: CRITICAL

CVE-2022-25857

Desc: The package org.yaml:snakeyaml from 0 and before 1.31 are vulnerable to

Denial of Service (DoS) due missing to nested depth limitation for collections.

Link: <a href="https://nvd.nist.gov/vuln/detail/CVE-2022-25857">https://nvd.nist.gov/vuln/detail/CVE-2022-25857</a>

Severity: HIGH

CVE-2022-38749

Desc: Using snakeYAML to parse untrusted YAML files may be vulnerable to Denial

of Service attacks (DOS). If the parser is running on user supplied input, an

attacker may supply content that causes the parser to crash by stackoverflow.

Link: <a href="https://nvd.nist.gov/vuln/detail/CVE-2022-38749">https://nvd.nist.gov/vuln/detail/CVE-2022-38749</a>

Severity: MEDIUM

CVE-2022-38750

Desc: Using snakeYAML to parse untrusted YAML files may be vulnerable to Denial

of Service attacks (DOS). If the parser is running on user supplied input, an

attacker may supply content that causes the parser to crash by stackoverflow.

Link: <a href="https://nvd.nist.gov/vuln/detail/CVE-2022-38750">https://nvd.nist.gov/vuln/detail/CVE-2022-38750</a>

Severity: MEDIUM

CVE-2022-38751

Desc: Using snakeYAML to parse untrusted YAML files may be vulnerable to Denial

of Service attacks (DOS). If the parser is running on user supplied input, an

attacker may supply content that causes the parser to crash by stackoverflow.

Link: <a href="https://nvd.nist.gov/vuln/detail/CVE-2022-38751">https://nvd.nist.gov/vuln/detail/CVE-2022-38751</a>

Severity: MEDIUM

CVE-2022-38752

Desc: Using snakeYAML to parse untrusted YAML files may be vulnerable to Denial

of Service attacks (DOS). If the parser is running on user supplied input, an

attacker may supply content that causes the parser to crash by stack-overflow.

Link: <a href="https://nvd.nist.gov/vuln/detail/CVE-2022-38752">https://nvd.nist.gov/vuln/detail/CVE-2022-38752</a>

Severity: MEDIUM

CVE-2022-41854

Desc: Those using Snakeyaml to parse untrusted YAML files may be vulnerable to

Denial of Service attacks (DOS). If the parser is running on user supplied

input, an attacker may supply content that causes the parser to crash by stack

overflow. This effect may support a denial of service attack.

Link: <a href="https://nvd.nist.gov/vuln/detail/CVE-2022-41854">https://nvd.nist.gov/vuln/detail/CVE-2022-41854</a>

Severity: MEDIUM</pre>

        </div>

      </p>

      <hr>

      <span>You are receiving this mail because:</span>

      <ul>

          <li>You are the QA Contact for the bug.</li>

          <li>You are the assignee for the bug.</li>

      </ul>

    </body>

</html>