CVE-2020-1747
published 2020-03-24CVE-2020-1747: A vulnerability was discovered in the PyYAML library in versions before 5.3.1, where it is susceptible to arbitrary code execution when it processes untrusted…
PriorityP260critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
5.30%
91.6th percentile
A vulnerability was discovered in the PyYAML library in versions before 5.3.1, where it is susceptible to arbitrary code execution when it processes untrusted YAML files through the full_load method or with the FullLoader loader. Applications that use the library to process untrusted input may be vulnerable to this flaw. An attacker could use this flaw to execute arbitrary code on the system by abusing the python/object/new constructor.
Affected
26 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | pyyaml | < pyyaml 5.3-2 (bookworm) | pyyaml 5.3-2 (bookworm) |
| debian | pyyaml | < pyyaml 5.3.1-4 (bookworm) | pyyaml 5.3.1-4 (bookworm) |
| docling-project | docling-core | — | — |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| msrc | cbl2_pyyaml_5.4.1-1_on_cbl_mariner_2.0 | — | — |
| msrc | cbl_mariner_2.0_arm | — | — |
| msrc | cbl_mariner_2.0_x64 | — | — |
| opensuse | leap | — | — |
| oracle | communications_cloud_native_core_network_function_cloud_native_environment | — | — |
| oracle | communications_cloud_native_core_network_function_cloud_native_environment | — | — |
| pyyaml | pyyaml | >= 0 < 5.3.1-4 | 5.3.1-4 |
| pyyaml | pyyaml | >= 0 < 5.3-2 | 5.3-2 |
| pyyaml | pyyaml | >= 0 < 5.3.1-4 | 5.3.1-4 |
| pyyaml | pyyaml | >= 0 < 5.3-2 | 5.3-2 |
| pyyaml | pyyaml | >= 0 < 5.3.1-4 | 5.3.1-4 |
| pyyaml | pyyaml | >= 0 < 5.3-2 | 5.3-2 |
| pyyaml | pyyaml | >= 0 < 5.3.1-4 | 5.3.1-4 |
| pyyaml | pyyaml | >= 0 < 5.3-2 | 5.3-2 |
| pyyaml | pyyaml | >= 0 < 5.4 | 5.4 |
| pyyaml | pyyaml | >= 5.1 < 5.4 | 5.4 |
| pyyaml | pyyaml | >= 5.1 < 5.3.1 | 5.3.1 |
| pyyaml | pyyaml | >= 5.1b7 < 5.3.1 | 5.3.1 |
Detection & IOCsextracted from sources · hover to see the quote
- →Arbitrary code execution is triggered via the `python/object/new` constructor in YAML payloads processed by PyYAML's FullLoader or full_load method — detect YAML input containing this constructor tag as a potential exploit attempt. ↗
- →Vulnerable code path is specifically the `full_load` method or `FullLoader` loader in PyYAML versions before 5.3.1 — flag usage of these in applications processing untrusted input. ↗
- ·Red Hat Quay 3.2 uses the vulnerable `load` function but only to parse the Nginx configuration file containing trusted data — not exploitable in that context. ↗
- ·Ansible Tower 3.7 uses affected PyYAML 3.12 but specifies SafeLoader when calling load() — not exploitable in that configuration. ↗
- ·Red Hat Quay from version 3.4 onward uses safe_load and is not affected. ↗
- ·The fix in PyYAML 5.3.1 for CVE-2020-1747 was incomplete; full remediation requires upgrading to PyYAML 5.4 (tracked as CVE-2020-14343). ↗
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
ghsa9.8CRITICAL
osv9.8CRITICAL
vendor_debian9.8CRITICAL
vendor_msrc9.8CRITICAL
vendor_redhat9.8CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
MS SWIFT Remote Code Execution via unsafe PyYAML deserialization
osv·2025-07-31
CVE-2020-1747 [LOW] MS SWIFT Remote Code Execution via unsafe PyYAML deserialization
MS SWIFT Remote Code Execution via unsafe PyYAML deserialization
## Description
A Remote Code Execution (RCE) vulnerability exists in the [modelscope/ms-swift](https://github.com/modelscope/ms-swift) project due to unsafe use of `yaml.load()` in combination with vulnerable versions of the PyYAML library (≤ 5.3.1). The issue resides in the `tests/run.py` script, where a user-supplied YAML configuration file is deserialized using `yaml.load()` with `yaml.FullLoader`.
If an attacker can control or replace the YAML configuration file provided to the `--run_config` argument, they may inject a malicious payload that results in arbitrary code execution.
## Affected Repository
- **Project:** [modelscope/ms-swift](https://github.com/modelscope/ms-swift)
- **Affect versions:** latest
- **File:*
GHSA
Improper Input Validation in PyYAML
ghsa·2021-04-20
CVE-2020-1747 [CRITICAL] CWE-20 Improper Input Validation in PyYAML
Improper Input Validation in PyYAML
A vulnerability was discovered in the PyYAML library in versions before 5.3.1, where it is susceptible to arbitrary code execution when it processes untrusted YAML files through the full_load method or with the FullLoader loader. Applications that use the library to process untrusted input may be vulnerable to this flaw. An attacker could use this flaw to execute arbitrary code on the system by abusing the python/object/new constructor.
OSV
Improper Input Validation in PyYAML
osv·2021-04-20
CVE-2020-1747 [CRITICAL] Improper Input Validation in PyYAML
Improper Input Validation in PyYAML
A vulnerability was discovered in the PyYAML library in versions before 5.3.1, where it is susceptible to arbitrary code execution when it processes untrusted YAML files through the full_load method or with the FullLoader loader. Applications that use the library to process untrusted input may be vulnerable to this flaw. An attacker could use this flaw to execute arbitrary code on the system by abusing the python/object/new constructor.
OSV
Improper Input Validation in PyYAML
osv·2021-03-25·CVSS 9.8
CVE-2020-14343 [CRITICAL] Improper Input Validation in PyYAML
Improper Input Validation in PyYAML
A vulnerability was discovered in the PyYAML library in versions before 5.4, where it is susceptible to arbitrary code execution when it processes untrusted YAML files through the full_load method or with the FullLoader loader. Applications that use the library to process untrusted input may be vulnerable to this flaw. This flaw allows an attacker to execute arbitrary code on the system by abusing the python/object/new constructor. This flaw is due to an incomplete fix for CVE-2020-1747.
GHSA
Improper Input Validation in PyYAML
ghsa·2021-03-25·CVSS 9.8
CVE-2020-14343 [CRITICAL] CWE-20 Improper Input Validation in PyYAML
Improper Input Validation in PyYAML
A vulnerability was discovered in the PyYAML library in versions before 5.4, where it is susceptible to arbitrary code execution when it processes untrusted YAML files through the full_load method or with the FullLoader loader. Applications that use the library to process untrusted input may be vulnerable to this flaw. This flaw allows an attacker to execute arbitrary code on the system by abusing the python/object/new constructor. This flaw is due to an incomplete fix for CVE-2020-1747.
OSV
CVE-2020-14343: A vulnerability was discovered in the PyYAML library in versions before 5
osv·2021-02-09·CVSS 9.8
CVE-2020-14343 [CRITICAL] CVE-2020-14343: A vulnerability was discovered in the PyYAML library in versions before 5
A vulnerability was discovered in the PyYAML library in versions before 5.4, where it is susceptible to arbitrary code execution when it processes untrusted YAML files through the full_load method or with the FullLoader loader. Applications that use the library to process untrusted input may be vulnerable to this flaw. This flaw allows an attacker to execute arbitrary code on the system by abusing the python/object/new constructor. This flaw is due to an incomplete fix for CVE-2020-1747.
OSV
CVE-2020-1747: A vulnerability was discovered in the PyYAML library in versions before 5
osv·2020-03-24·CVSS 9.8
CVE-2020-1747 [CRITICAL] CVE-2020-1747: A vulnerability was discovered in the PyYAML library in versions before 5
A vulnerability was discovered in the PyYAML library in versions before 5.3.1, where it is susceptible to arbitrary code execution when it processes untrusted YAML files through the full_load method or with the FullLoader loader. Applications that use the library to process untrusted input may be vulnerable to this flaw. An attacker could use this flaw to execute arbitrary code on the system by abusing the python/object/new constructor.
Microsoft
A vulnerability was discovered in the PyYAML library in versions before 5.4 where it is susceptible to arbitrary code execution when it processes untrusted YAML files through the full_load method or w
vendor_msrc·2021-02-09·CVSS 9.8
CVE-2020-14343 [CRITICAL] CWE-20 A vulnerability was discovered in the PyYAML library in versions before 5.4 where it is susceptible to arbitrary code execution when it processes untrusted YAML files through the full_load method or w
A vulnerability was discovered in the PyYAML library in versions before 5.4 where it is susceptible to arbitrary code execution when it processes untrusted YAML files through the full_load method or with the FullLoader loader. Applications that use the library to process untrusted input may be vulnerable to this flaw. This flaw allows an attacker to execute arbitrary code on the system by abusing the python/object/new constructor. This flaw is due to an incomplete fix for CVE-2020-1747.
FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?
One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure
Red Hat
PyYAML: incomplete fix for CVE-2020-1747
vendor_redhat·2020-07-22·CVSS 9.8
CVE-2020-14343 [CRITICAL] CWE-20 PyYAML: incomplete fix for CVE-2020-1747
PyYAML: incomplete fix for CVE-2020-1747
A vulnerability was discovered in the PyYAML library in versions before 5.4, where it is susceptible to arbitrary code execution when it processes untrusted YAML files through the full_load method or with the FullLoader loader. Applications that use the library to process untrusted input may be vulnerable to this flaw. This flaw allows an attacker to execute arbitrary code on the system by abusing the python/object/new constructor. This flaw is due to an incomplete fix for CVE-2020-1747.
A vulnerability was discovered in the PyYAML library, where it is susceptible to arbitrary code execution when it processes untrusted YAML files through the full_load method or with the FullLoader loader. Applications that use the library to process untrusted inpu
Microsoft
A vulnerability was discovered in the PyYAML library in versions before 5.3.1 where it is susceptible to arbitrary code execution when it processes untrusted YAML files through the full_load method or
vendor_msrc·2020-03-10·CVSS 9.8
CVE-2020-1747 [CRITICAL] CWE-20 A vulnerability was discovered in the PyYAML library in versions before 5.3.1 where it is susceptible to arbitrary code execution when it processes untrusted YAML files through the full_load method or
A vulnerability was discovered in the PyYAML library in versions before 5.3.1 where it is susceptible to arbitrary code execution when it processes untrusted YAML files through the full_load method or with the FullLoader loader. Applications that use the library to process untrusted input may be vulnerable to this flaw. An attacker could use this flaw to execute arbitrary code on the system by abusing the python/object/new constructor.
FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?
One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the
Red Hat
PyYAML: arbitrary command execution through python/object/new when FullLoader is used
vendor_redhat·2020-03-02·CVSS 9.8
CVE-2020-1747 [CRITICAL] CWE-20 PyYAML: arbitrary command execution through python/object/new when FullLoader is used
PyYAML: arbitrary command execution through python/object/new when FullLoader is used
A vulnerability was discovered in the PyYAML library in versions before 5.3.1, where it is susceptible to arbitrary code execution when it processes untrusted YAML files through the full_load method or with the FullLoader loader. Applications that use the library to process untrusted input may be vulnerable to this flaw. An attacker could use this flaw to execute arbitrary code on the system by abusing the python/object/new constructor.
A vulnerability was discovered in the PyYAML library, where it is susceptible to arbitrary code execution when it processes untrusted YAML files through the full_load method or with the FullLoader loader. Applications that use the library to process untrusted input may b
Debian
CVE-2020-1747: pyyaml - A vulnerability was discovered in the PyYAML library in versions before 5.3.1, w...
vendor_debian·2020·CVSS 9.8
CVE-2020-1747 [CRITICAL] CVE-2020-1747: pyyaml - A vulnerability was discovered in the PyYAML library in versions before 5.3.1, w...
A vulnerability was discovered in the PyYAML library in versions before 5.3.1, where it is susceptible to arbitrary code execution when it processes untrusted YAML files through the full_load method or with the FullLoader loader. Applications that use the library to process untrusted input may be vulnerable to this flaw. An attacker could use this flaw to execute arbitrary code on the system by abusing the python/object/new constructor.
Scope: local
bookworm: resolved (fixed in 5.3-2)
bullseye: resolved (fixed in 5.3-2)
forky: resolved (fixed in 5.3-2)
sid: resolved (fixed in 5.3-2)
trixie: resolved (fixed in 5.3-2)
Debian
CVE-2020-14343: pyyaml - A vulnerability was discovered in the PyYAML library in versions before 5.4, whe...
vendor_debian·2020·CVSS 9.8
CVE-2020-14343 [CRITICAL] CVE-2020-14343: pyyaml - A vulnerability was discovered in the PyYAML library in versions before 5.4, whe...
A vulnerability was discovered in the PyYAML library in versions before 5.4, where it is susceptible to arbitrary code execution when it processes untrusted YAML files through the full_load method or with the FullLoader loader. Applications that use the library to process untrusted input may be vulnerable to this flaw. This flaw allows an attacker to execute arbitrary code on the system by abusing the python/object/new constructor. This flaw is due to an incomplete fix for CVE-2020-1747.
Scope: local
bookworm: resolved (fixed in 5.3.1-4)
bullseye: resolved (fixed in 5.3.1-4)
forky: resolved (fixed in 5.3.1-4)
sid: resolved (fixed in 5.3.1-4)
trixie: resolved (fixed in 5.3.1-4)
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2020-14343 PyYAML: incomplete fix for CVE-2020-1747 [fedora-all]
bugzilla·2020-07-24·CVSS 9.8
CVE-2020-14343 [CRITICAL] CVE-2020-14343 PyYAML: incomplete fix for CVE-2020-1747 [fedora-all]
CVE-2020-14343 PyYAML: incomplete fix for CVE-2020-1747 [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported versions of Fedor
Bugzilla
CVE-2020-14343 python3-PyYAML: PyYAML: incomplete fix for CVE-2020-1747 [epel-all]
bugzilla·2020-07-24·CVSS 9.8
CVE-2020-14343 [CRITICAL] CVE-2020-14343 python3-PyYAML: PyYAML: incomplete fix for CVE-2020-1747 [epel-all]
CVE-2020-14343 python3-PyYAML: PyYAML: incomplete fix for CVE-2020-1747 [epel-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of epel-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported versi
Bugzilla
CVE-2020-14343 PyYAML: incomplete fix for CVE-2020-1747
bugzilla·2020-07-24·CVSS 9.8
CVE-2020-14343 [CRITICAL] CVE-2020-14343 PyYAML: incomplete fix for CVE-2020-1747
CVE-2020-14343 PyYAML: incomplete fix for CVE-2020-1747
The fix made in PyYAML for CVE-2020-1747 was not sufficient to resolve the issue.
Reference:
https://github.com/yaml/pyyaml/issues/420
Discussion:
Created PyYAML tracking bugs for this issue:
Affects: fedora-all [bug 1860469]
Created python2-pyyaml tracking bugs for this issue:
Affects: epel-all [bug 1860470]
Created python3-PyYAML tracking bugs for this issue:
Affects: epel-all [bug 1860468]
---
OpenStack: set to 'notaffected' because the packaged RHOSP version (PyYAML-3.10-11.el7) doesn't have the FullLoader code (lib/yaml/loader.py and constructor.py).
---
Mitigation:
Use `yaml.safe_load` or the SafeLoader loader when you parse untrusted input.
---
FullLoader, which is the class where this vulnerability lies, was
Bugzilla
CVE-2020-14343 python2-pyyaml: PyYAML: incomplete fix for CVE-2020-1747 [epel-all]
bugzilla·2020-07-24·CVSS 9.8
CVE-2020-14343 [CRITICAL] CVE-2020-14343 python2-pyyaml: PyYAML: incomplete fix for CVE-2020-1747 [epel-all]
CVE-2020-14343 python2-pyyaml: PyYAML: incomplete fix for CVE-2020-1747 [epel-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of epel-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported versi
Bugzilla
CVE-2020-1747 PyYAML: arbitrary command execution through python/object/new when FullLoader is used [fedora-all]
bugzilla·2020-03-02·CVSS 9.8
CVE-2020-1747 [CRITICAL] CVE-2020-1747 PyYAML: arbitrary command execution through python/object/new when FullLoader is used [fedora-all]
CVE-2020-1747 PyYAML: arbitrary command execution through python/object/new when FullLoader is used [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue
Bugzilla
CVE-2020-1747 PyYAML: arbitrary command execution through python/object/new when FullLoader is used
bugzilla·2020-02-26·CVSS 9.8
CVE-2020-1747 [CRITICAL] CVE-2020-1747 PyYAML: arbitrary command execution through python/object/new when FullLoader is used
CVE-2020-1747 PyYAML: arbitrary command execution through python/object/new when FullLoader is used
An arbitrary code execution was discovered in PyYAML when YAML files are parsed by FullLoader. This loader is used by default by yaml.load() when no loader is specified or when yaml.full_load() is used. Applications that use PyYAML to parse untrusted input may be vulnerable to this flaw, which would allow an attacker to execute arbitrary code on the system, by abusing the python/object/new constructor.
Discussion:
Acknowledgments:
Name: Riccardo Schirone (Red Hat)
---
FullLoader, which is the class where this vulnerability lies, was introduced in upstream version 5.1.
---
Even though the CVSS is 9.8/CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H, the Impact of this flaw is set to Mediu
arXiv
VulnRepairEval: An Exploit-Based Evaluation Framework for Assessing Large Language Model Vulnerability Repair Capabilities
arxiv_fulltext·2025-09-03
VulnRepairEval: An Exploit-Based Evaluation Framework for Assessing Large Language Model Vulnerability Repair Capabilities
: An Exploit-Based Evaluation Framework for Assessing Large Language Model Vulnerability Repair Capabilities
Weizhe Wang
Co-first author.
Tianjin University
China
Wei Ma
[1]
Singapore Management University
Singapore
Qiang Hu
Tianjin University
China
Yao Zhang
Corresponding author. [email protected], [email protected]
Tianjin University
China
Jianfei Sun
Singapore Management University
Singapore
Bin Wu
Tianjin University
China
Yang Liu
Nanyang Technological University
Singapore
Guangquan Xu
[2]
Tianjin University
China
Lingxiao Jiang
Singapore Management University
Singapore
Wang and Ma et al.
software vulnerability repair, LLM, exploit-based evaluation, benchmark
## Abstract
The adoption of Large Language Models (LLMs) for automated software vulnerability patching has sh
Bleepingcomputer
Microsoft November 2023 Patch Tuesday fixes 5 zero-days, 58 flaws
blogs_bleepingcomputer·2023-11-14·CVSS 7.8
[HIGH] Microsoft November 2023 Patch Tuesday fixes 5 zero-days, 58 flaws
## Microsoft November 2023 Patch Tuesday fixes 5 zero-days, 58 flaws
## Lawrence Abrams
16 Elevation of Privilege Vulnerabilities
6 Security Feature Bypass Vulnerabilities
15 Remote Code Execution Vulnerabilities
6 Information Disclosure Vulnerabilities
5 Denial of Service Vulnerabilities
11 Spoofing Vulnerabilities
The total count of 58 flaws does not include 5 Mariner security updates and 20 Microsoft Edge security updates released earlier this month.
To learn more about the non-security updates released today, you can review our dedicated articles on the new Windows 11 KB5032190 cumulative update and Windows 10 KB5032189 cumulative update .
## Five zero-days fixed
This month's Patch Tuesday fixes five zero-day vulnerabilities, with three exploited in attacks and three publicl
http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00017.htmlhttp://lists.opensuse.org/opensuse-security-announce/2020-05/msg00017.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1747https://github.com/yaml/pyyaml/pull/386https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7PPAS6C4SZRDQLR7C22A5U3QOLXY33JX/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/K5HEPD7LEVDPCITY5IMDYWXUMX37VFMY/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MMQXSZXNJT6ERABJZAAICI3DQSQLCP3D/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WORRFHPQVAFKKXXWLSSW6XKUYLWM6CSH/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZBJA3SGNJKCAYPSHOHWY3KBCWNM5NYK2/https://www.oracle.com/security-alerts/cpujul2022.htmlhttp://lists.opensuse.org/opensuse-security-announce/2020-04/msg00017.htmlhttp://lists.opensuse.org/opensuse-security-announce/2020-05/msg00017.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1747https://github.com/yaml/pyyaml/pull/386https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7PPAS6C4SZRDQLR7C22A5U3QOLXY33JX/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/K5HEPD7LEVDPCITY5IMDYWXUMX37VFMY/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MMQXSZXNJT6ERABJZAAICI3DQSQLCP3D/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WORRFHPQVAFKKXXWLSSW6XKUYLWM6CSH/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZBJA3SGNJKCAYPSHOHWY3KBCWNM5NYK2/https://www.oracle.com/security-alerts/cpujul2022.html
2020-03-24
Published