Libyang@* Security Vulnerabilities and Issues — Libyang@* CVE List

Lucene search

CesnetLibyang*

7 matches found

CVE•added 2021/05/20 7:15 p.m.•105 views

CVE-2021-28904

In function ext_get_plugin() in libyang

7.5CVSS7.2AI score0.00112EPSS

CVE•added 2021/05/20 7:15 p.m.•102 views

CVE-2021-28902

In function read_yin_container() in libyang ext[r] is NULL. In some cases, it can be NULL, which leads to the operation of retval->ext[r]->flags that results in a crash.

7.5CVSS7.2AI score0.00112EPSS

CVE•added 2021/05/20 7:15 p.m.•99 views

CVE-2021-28906

In function read_yin_leaf() in libyang ext[r] is NULL. In some cases, it can be NULL, which leads to the operation of retval->ext[r]->flags that results in a crash.

7.5CVSS7.2AI score0.00112EPSS

CVE•added 2021/05/20 7:15 p.m.•96 views

CVE-2021-28903

A stack overflow in libyang

7.5CVSS7.3AI score0.00927EPSS

CVE•added 2021/05/20 7:15 p.m.•93 views

CVE-2021-28905

In function lys_node_free() in libyang module can't be NULL. But in some cases, node->module can be null, which triggers a reachable assertion (CWE-617).

7.5CVSS7.2AI score0.00112EPSS

CVE•added 2023/04/11 12:15 p.m.•64 views

CVE-2023-26917

libyang from v2.0.164 to v2.1.30 was discovered to contain a NULL pointer dereference via the function lysp_stmt_validate_value at lys_parse_mem.c.

7.5CVSS7.4AI score0.00119EPSS

CVE•added 2023/04/03 10:15 p.m.•58 views

CVE-2023-26916

libyang from v2.0.164 to v2.1.30 was discovered to contain a NULL pointer dereference via the function lys_parse_mem at lys_parse_mem.c.

5.3CVSS5.4AI score0.00058EPSS