PT-2025-38664 · Crates.Io · Libyaml
Published
2025-09-11
·
Updated
2025-09-11
None
No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
In version 0.0.4,
libyml::string::yaml string extend was revised resulting in undefined behaviour, which is unsound.The GitHub project for
libyml was archived after unsoundness issues were raised.If you rely on this crate, it is highly recommended switching to a maintained alternative.
Recommended alternatives
libyaml-saferunsafe-libyaml-norway- Maintained fork ofunsafe-libyaml
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Libyaml