Due to unbounded alias chasing, a maliciously crafted YAML file can cause the system to consume significant system resources. If parsing user input, this may be used as a denial of service vector.
{ "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "0.0+git20170407.0.cd8b52f-1ubuntu2+esm1", "binary_name": "golang-gopkg-yaml.v2-dev" }, { "binary_version": "0.0+git20170407.0.cd8b52f-1ubuntu2+esm1", "binary_name": "golang-yaml.v2-dev" } ] }