Lucene search
K

9 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2019-20392

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An invalid memory access flaw is present in libyang before v1.0-r1 in the function resolvefeaturevalue when an if-feature statement is used inside a list key...

6.5CVSS6.4AI score0.01859EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2023/02/15 4:5 a.m.5 views

SUSE CVE-2019-20391

An invalid memory access flaw is present in libyang before v1.0-r3 in the function resolvefeaturevalue when an if-feature statement is used inside a bit. Applications that use libyang to parse untrusted input yang files may crash...

6.5CVSS6.7AI score0.01859EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2021/05/18 3:4 p.m.3 views

libyang: heap-based buffer over-read in function lys_type_free() due to malformed pattern

A heap-based buffer over-read flaw occurs in libyang in function lystypefree due to a malformed pattern statement value. Applications that use libyang to process untrusted input yang files may be vulnerable to this flaw, possibly causing a crash or information leaks...

6.5CVSS6.7AI score0.01914EPSS
Exploits1References4
OSV
OSV
added 2020/01/22 10:15 p.m.2 views

UBUNTU-CVE-2019-20398

A NULL pointer dereference is present in libyang before v1.0-r3 in the function lysextensioninstancesfree due to a copy of unresolved extensions in lysrestrdup. Applications that use libyang to parse untrusted input yang files may crash...

6.5CVSS6.6AI score0.01818EPSS
Exploits1References6
OSV
OSV
added 2020/01/22 10:15 p.m.5 views

UBUNTU-CVE-2019-20397

A double-free is present in libyang before v1.0-r1 in the function yyparse when an organization field is not terminated. Applications that use libyang to parse untrusted input yang files may be vulnerable to this flaw, which would cause a crash or potentially code execution...

8.8CVSS5.8AI score0.02488EPSS
Exploits0References6
OSV
OSV
added 2020/01/22 10:15 p.m.3 views

UBUNTU-CVE-2019-20395

A stack consumption issue is present in libyang before v1.0-r1 due to the self-referential union type containing leafrefs. Applications that use libyang to parse untrusted input yang files may crash...

6.5CVSS5.8AI score0.01839EPSS
Exploits1References6
OSV
OSV
added 2020/01/22 10:15 p.m.3 views

UBUNTU-CVE-2019-20393

A double-free is present in libyang before v1.0-r1 in the function yyparse when an empty description is used. Applications that use libyang to parse untrusted input yang files may be vulnerable to this flaw, which would cause a crash or potentially code execution...

8.8CVSS7.3AI score0.0279EPSS
Exploits1References6
OSV
OSV
added 2020/01/22 10:15 p.m.3 views

UBUNTU-CVE-2019-20391

An invalid memory access flaw is present in libyang before v1.0-r3 in the function resolvefeaturevalue when an if-feature statement is used inside a bit. Applications that use libyang to parse untrusted input yang files may crash...

6.5CVSS5.8AI score0.01859EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2020/01/22 12:0 a.m.4 views

PT-2020-1237 · Libyang · Libyang

Name of the Vulnerable Software and Affected Versions: libyang versions prior to 1.0-r1 Description: An invalid memory access flaw is present in the function resolve feature value when an if-feature statement is used inside a list key node, and the feature used is not defined. Applications that u...

8.8CVSS6.7AI score0.0279EPSS
Exploits7References42
Rows per page
Query Builder