pyyaml 5.3.1-1ubuntu0.1 source package in Ubuntu
Changelog
pyyaml (5.3.1-1ubuntu0.1) focal-security; urgency=medium
* SECURITY UPDATE: FullLoader arbitrary code execution
- debian/patches/CVE-2020-14343.patch: move a few constructors from
full_load to unsafe_load in lib/yaml/constructor.py,
lib3/yaml/constructor.py, tests/lib/test_recursive.py,
tests/lib3/test_recursive.py.
- CVE-2020-14343
-- Marc Deslauriers <email address hidden> Mon, 12 Apr 2021 09:28:38 -0400
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Focal
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any
- Section:
- python
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Focal | updates | main | python | |
| Focal | security | main | python |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| pyyaml_5.3.1.orig.tar.gz | 263.1 KiB | b8eac752c5e14d3eca0e6dd9199cd627518cb5ec06add0de9d32baeee6fe645d |
| pyyaml_5.3.1-1ubuntu0.1.debian.tar.xz | 7.9 KiB | ea905877c4372b74a104eff8c66a467304913814ccb9000a8b30cc51cbcf9098 |
| pyyaml_5.3.1-1ubuntu0.1.dsc | 2.4 KiB | 39145ae498f5922553af09757dbc680d10dbe67ff3d7772245ab28f440d46fcf |
Available diffs
Binary packages built by this source
- python-yaml: YAML parser and emitter for Python
Python-yaml is a complete YAML 1.1 parser and emitter for Python. It can parse
all examples from the specification. The parsing algorithm is simple enough to
be a reference for YAML parser implementors. A simple extension API is also
provided. The package is built using libyaml for improved speed.
- python-yaml-dbg: YAML parser and emitter for Python (debug build)
Python-yaml is a complete YAML 1.1 parser and emitter for Python. It can parse
all examples from the specification. The parsing algorithm is simple enough to
be a reference for YAML parser implementors. A simple extension API is also
provided. The package is built using libyaml for improved speed.
.
This package contains the extension built for the Python debug interpreter.
- python3-yaml: YAML parser and emitter for Python3
Python3-yaml is a complete YAML 1.1 parser and emitter for Python3. It can
parse all examples from the specification. The parsing algorithm is simple
enough to be a reference for YAML parser implementors. A simple extension API
is also provided. The package is built using libyaml for improved speed.
- python3-yaml-dbg: YAML parser and emitter for Python3 (debug build)
Python3-yaml is a complete YAML 1.1 parser and emitter for Python3. It can
parse all examples from the specification. The parsing algorithm is simple
enough to be a reference for YAML parser implementors. A simple extension API
is also provided. The package is built using libyaml for improved speed.
.
This package contains the extension built for the Python3 debug interpreter.
