4 known vulnerabilities · sorted by CVSS score
Uncaught Exception in GitHub repository eemeli/yaml prior to 2.0.0-5.
An issue in the Unmarshal function in Go-Yaml v3 causes the program to crash when attempting to deserialize invalid input.
Parsing malicious or large YAML documents can consume excessive amounts of CPU or memory.
Due to unbounded alias chasing, a maliciously crafted YAML file can cause the system to consume significant system resources. If parsing user input, this may be used as a denial of service vector.