Lucene search
+L

444 matches found

redhatcve
redhatcve
added 2019/12/06 8:17 a.m.28 views

CVE-2019-19333

A stack-based buffer overflow flaw was discovered in the way libyang parses YANG files with a leaf of type "bits". An application that uses libyang to parse untrusted YANG files may be vulnerable to this flaw, which would allow an attacker to cause a denial of service or execute code...

9.8CVSS4.8AI score0.03644EPSS
Exploits0References3
redhatcve
redhatcve
added 2019/12/06 8:17 a.m.25 views

CVE-2019-19334

A stack-based buffer overflow flaw was discovered in the way libyang parses YANG files with a leaf of type "identityref". An application that uses libyang to parse untrusted YANG files may be vulnerable to this flaw, which would allow an attacker to cause a denial of service or execute code...

9.8CVSS5.4AI score0.0387EPSS
Exploits0References3
symantec
symantec
added 2019/12/04 12:0 a.m.38 views

CESNET libyang Multiple Stack Based Buffer Overflow Vulnerabilities

Description CESNET libyang is prone to multiple stack-based buffer-overflow vulnerabilities because it fails to adequately bounds-check user-supplied data before copying it to an insufficiently sized memory buffer. An attacker can exploit these issues to execute arbitrary code in the context of a...

7.5CVSS0.2AI score0.0387EPSS
Exploits0References6Affected Software2
ptsecurity
ptsecurity
added 2019/03/29 12:0 a.m.3 views

PT-2019-1107 · Libyang · Libyang

Name of the Vulnerable Software and Affected Versions: libyang versions prior to v1.0-r1 Description: A double-free issue is present in the yyparse function when an empty description is used, potentially causing a crash or code execution. This issue affects applications that use libyang to parse...

10CVSS7.3AI score0.0279EPSS
Exploits7References44
Rows per page
Query Builder