This script is Copyright (C) 2014 Tenable Network Security, Inc.
The remote FreeBSD host is missing one or more security-related
oCERT reports :
The LibYAML project is an open source YAML 1.1 parser and emitter
written in C.
The library is affected by a heap-based buffer overflow which can lead
to arbitrary code execution. The vulnerability is caused by lack of
proper expansion for the string passed to the
A specially crafted YAML file, with a long sequence of percent-encoded
characters in a URL, can be used to trigger the overflow.
See also :
Update the affected packages.
Risk factor :
Medium / CVSS Base Score : 6.8