Bug#862373: solved upstream: Unconditionally instantiates objects from yaml data

[Dominique Dumont]

Hi

Good news: object creation can now be disabled starting from  YAML::XS 0.69.

That said, the default behavior is unchanged (which is reasonable).

This means that any application loading untrusted YAML data must be modified 
to set $YAML::XS::LoadBlessed to 0 before loading YAML files.

I guess this applies to lintian. (I'll check what's required for cme).

All the best
-- 
 https://github.com/dod38fr/   -o- http://search.cpan.org/~ddumont/
http://ddumont.wordpress.com/  -o-   irc: dod at irc.debian.org