Medium severity5.5NVD Advisory· Published Apr 3, 2017· Updated Jun 17, 2026
CVE-2017-5950
CVE-2017-5950
Description
The SingleDocParser::HandleNode function in yaml-cpp (aka LibYaml-C++) 0.5.3 allows remote attackers to cause a denial of service (stack consumption and application crash) via a crafted YAML file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
7cpe:2.3:a:yaml-cpp_project:yaml-cpp:0.5.3:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:yaml-cpp_project:yaml-cpp:0.5.3:*:*:*:*:*:*:*
- (no CPE)range: =0.5.3
- osv-coords5 versionspkg:rpm/opensuse/yaml-cpp&distro=openSUSE%20Tumbleweedpkg:rpm/suse/yaml-cpp&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP2pkg:rpm/suse/yaml-cpp&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP3pkg:rpm/suse/yaml-cpp&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP2pkg:rpm/suse/yaml-cpp&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP3
< 0.6.3-1.8+ 4 more
- (no CPE)range: < 0.6.3-1.8
- (no CPE)range: < 0.5.3-3.3.2
- (no CPE)range: < 0.5.3-3.3.2
- (no CPE)range: < 0.5.3-3.3.2
- (no CPE)range: < 0.5.3-3.3.2
Patches
Vulnerability mechanics
References
3- www.securityfocus.com/bid/97307nvdThird Party AdvisoryVDB Entry
- github.com/jbeder/yaml-cpp/issues/459nvdThird Party Advisory
- seclists.org/fulldisclosure/2024/Nov/0nvd
News mentions
0No linked articles in our index yet.