Due to unbounded alias chasing, a maliciously crafted YAML file can cause the system to consume significant system resources. If parsing user input, this may be used as a denial of service vector.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: Go

Published: 2022-12-27T21:13:42.393Z

Updated: 2024-08-03T17:23:09.096Z

Reserved: 2022-07-29T18:56:20.415Z

Link: CVE-2021-4235

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-12-27T22:15:11.960

Modified: 2023-07-06T00:15:09.707

Link: CVE-2021-4235

cve-icon Redhat

Severity : Moderate

Publid Date: 2022-12-27T00:00:00Z

Links: CVE-2021-4235 - Bugzilla