Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/14 12:0 a.m.10 views

SUSE SLES15 Security Update : libyang (SUSE-SU-2026:2337-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2337-1 advisory. This update for libyang fixes the following issues - CVE-2026-41401: use-after-free in lydparsersetdataflags when processing crafte...

7.5CVSS5.5AI score0.00519EPSS
Exploits0References7
SUSE Linux
SUSE Linux
added 2026/06/10 8:42 a.m.10 views

Security update for libyang

This update for libyang fixes the following issues CVE-2026-41401: use-after-free in lydparsersetdataflags when processing crafted YANG XML documents with specific metadata attributes bsc1266316. CVE-2026-44673: integer overflow in lybreadstring of src/parserlyb.c leads to heap buffer overflow wh...

9.2CVSS5.7AI score0.00519EPSS
Exploits0References8
CBLMariner
CBLMariner
added 2026/05/30 3:37 a.m.9 views

CVE-2026-41401 affecting package libyang for versions less than 2.1.148-3

CVE-2026-41401 affecting package libyang for versions less than 2.1.148-3. A patched version of the package is available...

7.1CVSS5.8AI score0.00519EPSS
Exploits0
NVD
NVD
added 2026/05/26 3:16 p.m.15 views

CVE-2026-41401

libyang before 5.2.6 contains a heap use-after-free write vulnerability in lydparsersetdataflags that incorrectly updates metadata list pointers when freeing non-head default metadata entries. Attackers can trigger this vulnerability by submitting crafted YANG XML documents with specific metadata...

7.1CVSS0.00519EPSS
Exploits0References4
Rows per page
Query Builder