Bugzilla – Bug 1226365
VUL-0: CVE-2024-35325: petsc: libyaml: double-free in yaml_event_delete in /src/libyaml/src/api.c
Last modified: 2024-06-14 15:30:28 UTC
+++ This bug was initially created as a clone of Bug #1226342 +++ A vulnerability was found in libyaml up to 0.2.5. Affected by this issue is the function yaml_event_delete of the file /src/libyaml/src/api.c. The manipulation leads to a double-free. References: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-35325 https://www.cve.org/CVERecord?id=CVE-2024-35325 https://github.com/idhyt/pocs/blob/main/libyaml/CVE-2024-35325.c https://bugzilla.redhat.com/show_bug.cgi?id=2292350
Although petsc embeds a copy of libyaml (since version 3.15), the upstream README file present in the directory where the libyaml code can be found [0] states that this copy is partial, and does not include the "emitter API and other output-related parts". openSUSE:Factory/petsc does not seem to include any of the functions listed in the POC step-by-step [1], meaning this bug will be closed as petsc seems to not be affected by the vulnerability considered here. [0] https://gitlab.com/petsc/petsc/-/blob/main/src/sys/yaml/README.md?ref_type=heads [1] https://github.com/idhyt/pocs/blob/main/libyaml/CVE-2024-35325.c