ALPINE-CVE-2014-9130 — Vulnetix

Try Vulnetix Request Demo

ALPINE-CVE-2014-9130 PUBLISHED CVSS 8.699999809265137 HIGH

scanner.c in LibYAML 0.1.5 and 0.1.6, as used in the YAML-LibYAML (aka YAML-XS) module for Perl, allows context-dependent attackers to cause a denial of service (assertion failure and crash) via vectors involving line-wrapping.

Risk Scores

CVSS v4.0

8.699999809265137

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Affected Products

Vendor	Product	Versions
Alpine:v3.4	yaml	0, 0.1.4-r0, 0.1.6-r0

Timeline

Dec 8, 2014 CVE Published
Nov 19, 2025 CVE Updated
Apr 30, 2026 Distribution Patch

References

https://security.alpinelinux.org/vuln/CVE-2014-9130 advisory

Open in Interactive Console →