Headline
CVE-2021-22557: fix: yaml loader security issue by ocervell · Pull Request #173 · google/slo-generator
SLO generator allows for loading of YAML files that if crafted in a specific format can allow for code execution within the context of the SLO Generator. We recommend upgrading SLO Generator past https://github.com/google/slo-generator/pull/173
yaml.Loader is subject to code execution using a specially formatted YAML file (exploit.yml):
!!python/object/apply:os.system [“id,whoami”]
and the following command:
slo-generator migrate -b exploit.yml
Credits to @Cimihan123 for finding this.