python39-pyyaml

Direct Vulnerabilities

Known vulnerabilities in the python39-pyyaml package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability	Vulnerable Version
H Arbitrary Argument Injection	*
M Untrusted Pointer Dereference	*
H Expired Pointer Dereference	*
M CRLF Injection	*
H Arbitrary Argument Injection	*
L Directory Traversal	*
M Buffer Access with Incorrect Length Value	*
M Incomplete Filtering of Special Elements	*
L Insufficient Logging	*
M CRLF Injection	*
M Improper Input Validation	*
M Arbitrary Code Injection	*
M CRLF Injection	*
M Improper Neutralization	*
M Arbitrary Command Injection	*
M Arbitrary Command Injection	*
M CRLF Injection	*
H Directory Traversal	<0:5.4.1-1.module+el8.9.0+19644+d68f775d
H Unquoted Search Path or Element	<0:5.4.1-1.module+el8.9.0+19644+d68f775d
H Improper Validation of Specified Type of Input	<0:5.4.1-1.module+el8.9.0+19644+d68f775d
M Allocation of Resources Without Limits or Throttling	*
M Allocation of Resources Without Limits or Throttling	*
M Allocation of Resources Without Limits or Throttling	*
H Allocation of Resources Without Limits or Throttling	<0:5.4.1-1.module+el8.9.0+19644+d68f775d
H Improper Handling of Length Parameter Inconsistency	<0:5.4.1-1.module+el8.9.0+19644+d68f775d
M Directory Traversal	<0:5.4.1-1.module+el8.9.0+19644+d68f775d
M Loop with Unreachable Exit Condition ('Infinite Loop')	<0:5.4.1-1.module+el8.9.0+19644+d68f775d
H Use After Free	<0:5.4.1-1.module+el8.9.0+19644+d68f775d
H Directory Traversal	<0:5.4.1-1.module+el8.9.0+19644+d68f775d
H Use of Incorrectly-Resolved Name or Reference	<0:5.4.1-1.module+el8.9.0+19644+d68f775d
H Directory Traversal	<0:5.4.1-1.module+el8.9.0+19644+d68f775d
H Inefficient Regular Expression Complexity	<0:5.4.1-1.module+el8.9.0+19644+d68f775d
M Use of Less Trusted Source	<0:5.4.1-1.module+el8.9.0+19644+d68f775d
L Improper Handling of Inconsistent Special Elements	*
H Improper Input Validation	<0:5.4.1-1.module+el8.9.0+19644+d68f775d
L Resource Exhaustion	*
M Inefficient Regular Expression Complexity	<0:5.4.1-1.module+el8.9.0+19644+d68f775d
M Arbitrary Code Injection	<0:5.4.1-1.module+el8.9.0+19644+d68f775d
M Loop with Unreachable Exit Condition ('Infinite Loop')	<0:5.4.1-1.module+el8.9.0+19644+d68f775d
M CVE-2024-6923	<0:5.4.1-1.module+el8.9.0+19644+d68f775d
L Race Condition	*
H Improper Input Validation	<0:5.4.1-1.module+el8.9.0+19644+d68f775d
M Expected Behavior Violation	<0:5.4.1-1.module+el8.9.0+19644+d68f775d
H Resource Exhaustion	<0:5.4.1-1.module+el8.9.0+19644+d68f775d
M Information Exposure	<0:5.4.1-1.module+el8.9.0+19644+d68f775d
M Improper Check for Unusual or Exceptional Conditions	<0:5.4.1-1.module+el8.9.0+19644+d68f775d
M Incorrect Regular Expression	<0:5.4.1-1.module+el8.9.0+19644+d68f775d
H Symlink Following	<0:5.4.1-1.module+el8.9.0+19644+d68f775d
H Multiple Interpretations of UI Input	<0:5.4.1-1.module+el8.9.0+19644+d68f775d
M Resource Leak	<0:5.4.1-1.module+el8.9.0+19644+d68f775d
H Authentication Bypass by Primary Weakness	<0:5.4.1-1.module+el8.5.0+10613+59a13ec4
M Uncontrolled Recursion	*
M Improper Input Validation	<0:5.4.1-1.module+el8.9.0+19644+d68f775d
H Improper Input Validation	<0:5.4.1-1.module+el8.5.0+10613+59a13ec4
M Resource Exhaustion	<0:5.4.1-1.module+el8.5.0+10613+59a13ec4
M Directory Traversal	<0:5.4.1-1.module+el8.9.0+19644+d68f775d
H Improper Privilege Management	<0:5.4.1-1.module+el8.5.0+10613+59a13ec4
M Incorrect Type Conversion or Cast	<0:5.4.1-1.module+el8.5.0+10613+59a13ec4
M Open Redirect	<0:5.4.1-1.module+el8.5.0+10613+59a13ec4
M Improper Input Validation	<0:5.4.1-1.module+el8.5.0+10613+59a13ec4
M Arbitrary Code Injection	*
M Cross-site Scripting (XSS)	<0:5.4.1-1.module+el8.5.0+10613+59a13ec4
M Resource Exhaustion	<0:5.4.1-1.module+el8.5.0+10613+59a13ec4
M Loop with Unreachable Exit Condition ('Infinite Loop')	<0:5.4.1-1.module+el8.5.0+10613+59a13ec4
M Improper Input Validation	<0:5.4.1-1.module+el8.5.0+10613+59a13ec4
M Information Exposure	<0:5.4.1-1.module+el8.5.0+10613+59a13ec4
M Loop with Unreachable Exit Condition ('Infinite Loop')	<0:5.4.1-1.module+el8.5.0+10613+59a13ec4
M Cross-site Scripting (XSS)	<0:5.4.1-1.module+el8.5.0+10613+59a13ec4
M Improper Input Validation	<0:5.4.1-1.module+el8.5.0+10613+59a13ec4
H Improper Input Validation	*

Vulnerability

Vulnerable Version

Arbitrary Argument Injection