Todd Rinaldo

**Name of the Vulnerable Software and Affected Versions** YAML::Syck versions through 1.36 **Description** YAML::Syck for Perl has multiple security issues, including a high-severity heap buffer overflow in the YAML emitter. This overflow happens when class names are longer than the initial 512-byte allocation. The base64 decoder may read beyond the buffer's end when encountering trailing newlines. The `strtok` function modifies `n->type id` directly, potentially corrupting shared node data. Additionally, a memory leak occurs in the `syck hdlr add anchor` function when a node already has an anchor, leaking the incoming anchor string `a` upon early return. The issue affects the YAML emitter component. **Recommendations** Update YAML::Syck to a version later than 1.36.

**Name of the Vulnerable Software and Affected Versions** Perl versions prior to 5.22.3-RC2 Perl versions 5.24 prior to 5.24.1-RC2 **Description** The issue is related to errors in privilege management in the Perl interpreter, specifically with the handling of the included directory array ("@INC"). This could allow a local user to gain privileges via a Trojan horse module under the current working directory by exploiting the failure to properly remove period characters from the end of the includes directory array. **Recommendations** For Perl versions prior to 5.22.3-RC2, update to version 5.22.3-RC2 or later. For Perl versions 5.24 prior to 5.24.1-RC2, update to version 5.24.1-RC2 or later. As a temporary workaround, consider restricting access to the vulnerable modules under the current working directory to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** OpenSSL versions prior to 0.9.8n OpenSSL versions prior to 1.0.0e **Description** The issue is related to the `kssl keytab is available` function in OpenSSL, which, when Kerberos is enabled but Kerberos configuration files cannot be opened, does not check a certain return value. This allows remote attackers to cause a denial of service via SSL cipher negotiation, potentially leading to a daemon crash. The vulnerability may also lead to disruptions in confidentiality, integrity, and availability of protected information. **Recommendations** For versions prior to 0.9.8n, update to version 0.9.8n or later. For versions prior to 1.0.0e, update to version 1.0.0e or later. As a temporary workaround, consider disabling Kerberos support until a patch is available.