In function ext_get_plugin() in libyang <= v1.0.225, it doesn’t check whether the value of revision is NULL. If revision is NULL, the operation of strcmp(revision, ext_plugins[u].revision) will lead to a crash.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 11 | all | libyang | <= 1.0.225-1.1 | libyang_1.0.225-1.1_all.deb |
Debian | 10 | all | libyang | <= 0.16.105-1+deb10u1 | libyang_0.16.105-1+deb10u1_all.deb |