Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2021-28906HistoryMay 20, 2021 - 7:15 p.m.
CVE-2021-28906
2021-05-2019:15:00
Debian Security Bug Tracker
security-tracker.debian.org
7
0.001 Low
EPSS
Percentile
45.3%
In function read_yin_leaf() in libyang <= v1.0.225, it doesn’t check whether the value of retval->ext[r] is NULL. In some cases, it can be NULL, which leads to the operation of retval->ext[r]->flags that results in a crash.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 11 | all | libyang | <= 1.0.225-1.1 | libyang_1.0.225-1.1_all.deb |
| Debian | 10 | all | libyang | <= 0.16.105-1+deb10u1 | libyang_0.16.105-1+deb10u1_all.deb |
Related
osv
osv
CVE-2021-28906
2021-05-20 19:15:07
ubuntucve
ubuntucve
CVE-2021-28906
2021-05-20 00:00:00
veracode
veracode
Denial Of Service (DoS)
2021-06-01 08:50:08
cve
cve
CVE-2021-28906
2021-05-20 19:15:00
prion
prion
Design/Logic Flaw
2021-05-20 19:15:00
alpinelinux
alpinelinux
CVE-2021-28906
2021-05-20 19:15:00
redhatcve
redhatcve
CVE-2021-28906
2021-05-24 15:13:32
cvelist
cvelist
CVE-2021-28906
2021-05-20 18:36:44
suse
suse
Security update for libyang (important)
2022-09-12 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2022:3245-1)
2022-09-13 00:00:00
openSUSE: Security Advisory for libyang (SUSE-SU-2022:3245-1)
2022-09-13 00:00:00
nessus
nessus
SUSE SLES15 Security Update : libyang (SUSE-SU-2022:3245-1)
2022-09-13 00:00:00
GLSA-202107-54 : libyang: Multiple vulnerabilities
2022-01-24 00:00:00
RHEL 8 : libyang (Unpatched Vulnerability)
2024-05-11 00:00:00
gentoo
gentoo
libyang: Multiple vulnerabilities
2021-07-24 00:00:00