REDHAT-BUG-2150009
First published: Thu Dec 01 2022(Updated: )
SnakeYaml's Constructor() class does not restrict types which can be instantiated during deserialization. Deserializing yaml content provided by an attacker can lead to remote code execution. We recommend using SnakeYaml's SafeConsturctor when parsing untrusted content to restrict deserialization.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| SnakeYaml |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://access.redhat.com/errata/RHSA-2022:9032
- https://access.redhat.com/errata/RHSA-2022:9058
- https://issues.redhat.com/browse/CRW-3658?filter=12405213&jql=project%20%3D%20CRW%20AND%20component%20%3D%20%22productization%3A%20security%20%26%20legal%22%20AND%20labels%20%3D%20SecurityTracking%20AND%20resolution%20is%20EMPTY%20and%20text%20~%20snakeyaml
- https://access.redhat.com/errata/RHSA-2023:0758
- https://access.redhat.com/errata/RHSA-2023:0697
- https://access.redhat.com/errata/RHSA-2023:0777
- https://access.redhat.com/errata/RHSA-2023:1043
- https://access.redhat.com/errata/RHSA-2023:1044
- https://access.redhat.com/errata/RHSA-2023:1045
- https://access.redhat.com/errata/RHSA-2023:1047
- https://access.redhat.com/errata/RHSA-2023:1049
- https://access.redhat.com/errata/RHSA-2023:1006
- https://access.redhat.com/errata/RHSA-2023:1514
- https://access.redhat.com/errata/RHSA-2023:1513
- https://access.redhat.com/errata/RHSA-2023:1512
- https://access.redhat.com/errata/RHSA-2023:1516
- https://access.redhat.com/errata/RHSA-2023:2097
- https://access.redhat.com/errata/RHSA-2023:3198
- https://access.redhat.com/errata/RHSA-2023:4612
- https://access.redhat.com/errata/RHSA-2023:5165
- https://access.redhat.com/errata/RHSA-2023:7697
- https://access.redhat.com/errata/RHSA-2024:0325
- https://access.redhat.com/errata/RHSA-2024:0775
- https://access.redhat.com/errata/RHSA-2024:1353
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2272329
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2272330
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2272331
- https://access.redhat.com/errata/RHSA-2025:1746
- https://access.redhat.com/errata/RHSA-2025:1747
- https://bugzilla.redhat.com/show_bug.cgi?id=2150009
Frequently Asked Questions
What is the severity of REDHAT-BUG-2150009?
The severity of REDHAT-BUG-2150009 is critical as it allows for remote code execution through unsafe deserialization.
How do I fix REDHAT-BUG-2150009?
To fix REDHAT-BUG-2150009, use SnakeYaml's SafeConstructor when parsing untrusted YAML content.
What happens if I ignore REDHAT-BUG-2150009?
Ignoring REDHAT-BUG-2150009 may expose your application to remote code execution attacks.
What versions of SnakeYaml are affected by REDHAT-BUG-2150009?
All versions of SnakeYaml that utilize the Constructor() class for deserialization are affected by REDHAT-BUG-2150009.
Can REDHAT-BUG-2150009 be exploited remotely?
Yes, REDHAT-BUG-2150009 can be exploited remotely by attackers through specially crafted YAML content.
- agent/type
- agent/first-publish-date
- agent/severity
- agent/description
- agent/event
- agent/trending
- agent/source
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2022-1471
- agent/last-modified-date
- agent/references
- agent/tags
- agent/softwarecombine
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/snakeyaml
- canonical/snakeyaml