Issue #9685 has been updated by Usaku NAKAMURA.

Backport changed from 2.0.0: REQUIRED, 2.1: DONE to 2.0.0: DONE, 2.1: DONE

backported a part of r45453 into ruby_2_0_0.

I decided to update only libyaml and not psych itself.

----------------------------------------
Bug #9685: psych-2.0.5 のバックポート
https://bugs.ruby-lang.org/issues/9685#change-46606

* Author: Hiroshi SHIBATA
* Status: Closed
* Priority: Normal
* Assignee: 
* Category: 
* Target version: 
* ruby -v: ruby 2.2.0dev (2014-03-27 trunk 45452) [x86_64-darwin13]
* Backport: 2.0.0: DONE, 2.1: DONE
----------------------------------------
CVE-2014-2525 の修正を含んだ psych-2.0.5 のバックポートをお願いします。

ref. https://github.com/tenderlove/psych/pull/187
related commits. r45454, r45455 



-- 
https://bugs.ruby-lang.org/