Advisories ยป MGASA-2019-0125

Updated python-yaml packages fix security vulnerability

Publication date: 05 Apr 2019
Modification date: 05 Apr 2019
Type: security
Affected Mageia releases : 6
CVE: CVE-2017-18342

Description

It was found that using yaml.load() API on untrusted input could lead to
arbitrary code execution (CVE-2017-18342).
                

References

SRPMS

6/core