Workflow

PyPi: Remarshal

PVE-2023-60980

Safety vulnerability ID: 60980

This vulnerability was reviewed by experts

The information on this page was manually curated by our Cybersecurity Intelligence Team.

Created at Sep 05, 2023 Updated at Nov 21, 2024

Advisory

Remarshal 0.17.1 prevents a billion laughs attack carried out with YAML anchors. https:/…

[This advisory has been limited. Please create a free account to view the full advisory.]

Affected package

remarshal

Latest version: 0.20.0

Convert between CBOR, JSON, MessagePack, TOML, and YAML

Affected versions

Fixed versions

Vulnerability changelog

* Fixed a [billion laughs](https://en.wikipedia.org/wiki/Billion_laughs_attack) DoS vulne…

[This text has been limited. Please create a free account to view the full text.]

Resources