51 matches found
EUVD-2018-8853
Malware in sbrugna...
EUVD-2019-10943
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2019-20397
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A double-free is present in libyang before v1.0-r1 in the function yyparse when an organization field is not terminated. Applications that use libyang to parse...
Linux Distros Unpatched Vulnerability : CVE-2019-20394
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A double-free is present in libyang before v1.0-r3 in the function yyparse when a type statement in used in a notification statement. Applications that use...
PT-2024-40640 · Git +1 · Igraph
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a crash caused by a global buffer overflow read. The crash occurs in the following functions: igraph dl yylex, igraph dl yyparse,...
SUSE CVE-2019-20394
A double-free is present in libyang before v1.0-r3 in the function yyparse when a type statement in used in a notification statement. Applications that use libyang to parse untrusted input yang files may be vulnerable to this flaw, which would cause a crash or potentially code execution...
SUSE CVE-2019-20397
A double-free is present in libyang before v1.0-r1 in the function yyparse when an organization field is not terminated. Applications that use libyang to parse untrusted input yang files may be vulnerable to this flaw, which would cause a crash or potentially code execution...
SUSE CVE-2019-20393
A double-free is present in libyang before v1.0-r1 in the function yyparse when an empty description is used. Applications that use libyang to parse untrusted input yang files may be vulnerable to this flaw, which would cause a crash or potentially code execution...
libyang: double-free in function yyparse() when empty description is used
A double-free flaw occurs in libyang in function yyparse when an empty description is used. Applications that use libyang to process untrusted input YANG files may be vulnerable to this flaw, possibly causing a crash or potential code execution...
libyang: double-free in yyparse() when a type statement is used in a notification statement
A double-free flaw occurs in libyang in function yyparse when a type statement is used in a notification statement. Applications that use libyang to process untrusted input YANG files may be vulnerable to this flaw, possibly causing a crash or potential code execution...
libyang: double-free in yyparse() when organization field is not terminated
A double-free flaw occurs in libyang in function yparse when an organization field is not terminated. Applications that use libyang to process untrusted input YANG files may be vulnerable to this flaw, possibly causing a crash or potential code execution...
OSV-2020-447 UNKNOWN READ in yyparse
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=17968 Crash type: UNKNOWN READ Crash state: yyparse mrbparserparse mrbparsenstring...
Double-free
libyang.so is susceptible to double free vulnerability. It exists in the function yyparse when empty description is used...
Libyang Input Validation Error Vulnerability
libyang is a YANG data modeling language parser and toolkit written in C. It can be used as a toolkit for data modeling. An input validation error vulnerability exists in yyparse in versions prior to libyang v1.0-r1. The vulnerability stems from a networked system or product that does not properl...
libyang resource management error vulnerability (CNVD-2020-10241)
libyang is a YANG data modeling language parser and toolkit written in C. It can be used as a toolkit for data modeling. A resource management error vulnerability exists in the 'yyparse' function in versions of libyang prior to 1.0-r1. An attacker can exploit this vulnerability to cause an...
libyang yyparse() memory misreference vulnerability
libyang is a data modeling language library. A memory misreference vulnerability exists in libyang yyparse, which can be exploited by a remote attacker to submit a special file request and trick the user into parsing it, which can be used to conduct a denial of service attack or execute arbitrary...
libyang yyparse() memory misreference vulnerability (CNVD-2020-10246)
libyang is a data modeling language library. A memory misreference vulnerability exists in libyang yyparse, which can be exploited by an attacker to submit a special file request and trick the user into parsing it, which can be used to conduct a denial of service attack or execute arbitrary code...
CVE-2019-20394
A double-free flaw occurs in libyang in function yyparse when a type statement is used in a notification statement. Applications that use libyang to process untrusted input YANG files may be vulnerable to this flaw, possibly causing a crash or potential code execution...
CVE-2019-20393
A double-free flaw occurs in libyang in function yyparse when an empty description is used. Applications that use libyang to process untrusted input YANG files may be vulnerable to this flaw, possibly causing a crash or potential code execution...
CVE-2019-20396
A segmentation fault is present in yyparse in libyang before v1.0-r1 due to a malformed pattern statement value during lysparsepath parsing...