com.charleskorn.kaml:kaml@0.42.0 vulnerabilities
-
latest version
0.60.0
-
latest non vulnerable version
-
first published
6 years ago
-
latest version published
2 months ago
-
licenses detected
- [0.1.0,)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the com.charleskorn.kaml:kaml package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.| Vulnerability | Vulnerable Version |
|---|---|
com.charleskorn.kaml:kaml is a YAML support for kotlinx.serialization. Affected versions of this package are vulnerable to Denial of Service (DoS) when parsing input containing anchors and aliases. Attackers can trigger excessive memory consumption and a crash with a billion laughs attack. How to fix Denial of Service (DoS)? Upgrade |
[,0.53.0)
|