It was discovered that SnakeYAML incorrectly handled recursive entity references. An attacker could possibly use this issue to cause SnakeYAML to crash, resulting in a denial of service.
{ "binaries": [ { "binary_version": "1.12-2ubuntu0.14.04.1~esm2", "binary_name": "libyaml-snake-java" }, { "binary_version": "1.12-2ubuntu0.14.04.1~esm2", "binary_name": "libyaml-snake-java-doc" } ], "availability": "Available with Ubuntu Pro with Legacy support add-on: https://ubuntu.com/pro" }