SUSE CVE-2021-28905

In function lysnodefree in libyang module can't be NULL. But in some cases, node-module can be null, which triggers a reachable assertion CWE-617...

The vulnerability of the lys_node_free() function in the syntax analyzer and modeling tool of the YANG Libyang language, related to the insufficient use of the assert() function, allows attackers to trigger a service failure.

The vulnerability of the lysnodefree function in the syntax analyzer and modeling tool of the YANG Libyang language is related to the insufficient use of the assert function. Exploiting this vulnerability could allow a malicious actor to cause service failures...

DEBIAN-CVE-2021-28905

In function lysnodefree in libyang module can't be NULL. But in some cases, node-module can be null, which triggers a reachable assertion CWE-617...

libyang 安全漏洞

libyang is a YANG data modeling language parser and toolkit written in C. It can be used as a toolkit for data modeling. A security vulnerability exists in libyang version 1.0.225 and earlier versions, which originates in lysnodefree, which does not check if the value of revision is NULL. no...

PT-2021-4114 · Libyang +2 · Libyang +2

Name of the Vulnerable Software and Affected Versions: libyang versions prior to 1.0.226 Description: The issue is related to the function lys node free in the libyang library, where it incorrectly asserts that the value of node-module cannot be NULL. However, in certain cases, node-module can...