UBUNTU-CVE-2026-57075

Source
https://ubuntu.com/security/CVE-2026-57075
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-57075.json
JSON Data
https://api.osv.dev/v1/vulns/UBUNTU-CVE-2026-57075
Upstream
Published
2026-07-17T00:00:00Z
Modified
2026-07-17T14:31:11.739465220Z
Severity
  • Ubuntu - medium
Summary
[none]
Details

YAML::Syck versions before 1.47 for Perl allow an out-of-bounds read via a signed-char lookup-table index in syckbase64dec. The base64 decoder in the bundled libsyck indexes the 256-entry static table b64xtable with a signed char, so any !!binary byte >= 0x80 sign-extends to a negative index and reads before the table. The decoder receives the raw bytes of any !!binary node, a standard YAML type not gated by $LoadBlessed or $LoadCode, so it is reached on the default Load path. Any caller that runs Load or LoadFile on an untrusted document containing a !!binary scalar with a high-bit byte triggers the read, and the value read can surface in the decoded result.

References

Affected packages

Ubuntu:26.04:LTS
libyaml-syck-perl

Package

Name
libyaml-syck-perl
Purl
pkg:deb/ubuntu/libyaml-syck-perl?arch=source&distro=resolute

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*
1.34-3
1.34-4
1.36-1

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "1.36-1",
            "binary_name": "libyaml-syck-perl"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-57075.json"
Ubuntu:Pro:16.04:LTS
libyaml-syck-perl

Package

Name
libyaml-syck-perl
Purl
pkg:deb/ubuntu/libyaml-syck-perl?arch=source&distro=esm-apps%2Fxenial

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*
1.27-2build2
1.29-1
1.29-1build1
1.29-1ubuntu0.16.04.1~esm1

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "1.29-1ubuntu0.16.04.1~esm1",
            "binary_name": "libyaml-syck-perl"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-57075.json"
Ubuntu:Pro:18.04:LTS
libyaml-syck-perl

Package

Name
libyaml-syck-perl
Purl
pkg:deb/ubuntu/libyaml-syck-perl?arch=source&distro=esm-apps%2Fbionic

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*
1.29-1build3
1.29-1ubuntu0.18.04.1~esm1

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "1.29-1ubuntu0.18.04.1~esm1",
            "binary_name": "libyaml-syck-perl"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-57075.json"
Ubuntu:Pro:20.04:LTS
libyaml-syck-perl

Package

Name
libyaml-syck-perl
Purl
pkg:deb/ubuntu/libyaml-syck-perl?arch=source&distro=esm-apps%2Ffocal

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*
1.31-1
1.31-1build1
1.31-1ubuntu0.1~esm1

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "1.31-1ubuntu0.1~esm1",
            "binary_name": "libyaml-syck-perl"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-57075.json"
Ubuntu:Pro:22.04:LTS
libyaml-syck-perl

Package

Name
libyaml-syck-perl
Purl
pkg:deb/ubuntu/libyaml-syck-perl?arch=source&distro=esm-apps%2Fjammy

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*
1.34-1build1
1.34-1build2
1.34-1ubuntu0.1~esm1

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "1.34-1ubuntu0.1~esm1",
            "binary_name": "libyaml-syck-perl"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-57075.json"
Ubuntu:Pro:24.04:LTS
libyaml-syck-perl

Package

Name
libyaml-syck-perl
Purl
pkg:deb/ubuntu/libyaml-syck-perl?arch=source&distro=esm-apps%2Fnoble

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*
1.34-2
1.34-2build1
1.34-2build2
1.34-2build3
1.34-2ubuntu0.24.04.1~esm1

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "1.34-2ubuntu0.24.04.1~esm1",
            "binary_name": "libyaml-syck-perl"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-57075.json"