go-yaml is vulnerable to a Billion Laughs Attack.
OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
See which of your images are affected by this CVE and how to fix them by signing into Docker Scout.