CVE-2022-1471
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2022-1471
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-1471.json
- Aliases
- Related
- Published
- 2022-12-01T11:15:10Z
- Modified
- 2023-11-29T09:13:33.668317Z
- Details
-
SnakeYaml's Constructor() class does not restrict types which can be instantiated during deserialization. Deserializing yaml content provided by an attacker can lead to remote code execution. We recommend using SnakeYaml's SafeConsturctor when parsing untrusted content to restrict deserialization. We recommend upgrading to version 2.0 and beyond.
- References
-
- https://github.com/google/security-research/security/advisories/GHSA-mjmj-j48q-9wg2
- https://security.netapp.com/advisory/ntap-20230818-0015/
- https://github.com/mbechler/marshalsec
- https://www.github.com/mbechler/marshalsec/blob/master/marshalsec.pdf?raw=true
- https://bitbucket.org/snakeyaml/snakeyaml/issues/561/cve-2022-1471-vulnerability-in#comment-64581479
- http://packetstormsecurity.com/files/175095/PyTorch-Model-Server-Registration-Deserialization-Remote-Code-Execution.html
- http://www.openwall.com/lists/oss-security/2023/11/19/1
- https://groups.google.com/g/kubernetes-security-announce/c/mwrakFaEdnc
Affected packages
Git / bitbucket.org/snakeyaml/snakeyaml
Affected ranges
- Type
- GIT
- Repo
- https://bitbucket.org/snakeyaml/snakeyaml
- Events
-
Introduced0The exact introduced commit is unknownFixed59ddbb3304bb8e22e2004d74cddaf9ed4086632e
Affected versions
1.*
1.6rc2
snakeyaml-1.*
snakeyaml-1.19
snakeyaml-1.20
snakeyaml-1.21
snakeyaml-1.22
snakeyaml-1.23
snakeyaml-1.24
snakeyaml-1.25
snakeyaml-1.26
snakeyaml-1.27
snakeyaml-1.28
snakeyaml-1.29
snakeyaml-1.30
snakeyaml-1.31
snakeyaml-1.32
snakeyaml-1.33
v1.*
v1.1
v1.10
v1.11
v1.12
v1.13
v1.15
v1.16
v1.17
v1.18
v1.2
v1.3
v1.4
v1.4rc1
v1.5
v1.5rc1
v1.6
v1.6rc1
v1.7
v1.7rc1
v1.8
v1.9