Описание
In function read_yin_leaf() in libyang <= v1.0.225, it doesn't check whether the value of retval->ext[r] is NULL. In some cases, it can be NULL, which leads to the operation of retval->ext[r]->flags that results in a crash.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| libyang2 | not-affected | package | ||
| libyang | fixed | 3.4.2+dfsg-2 | package | |
| libyang | no-dsa | bullseye | package | |
| libyang | no-dsa | buster | package |
Примечания
https://github.com/CESNET/libyang/issues/1455
https://github.com/CESNET/libyang/commit/a3917d95d516e3de267d3cfa5d4d3715a90e8777 (v1.0.240)
src:libyang was removed and later re-introduced as src:libyang with version 3
EPSS
Связанные уязвимости
In function read_yin_leaf() in libyang <= v1.0.225, it doesn't check whether the value of retval->ext[r] is NULL. In some cases, it can be NULL, which leads to the operation of retval->ext[r]->flags that results in a crash.
In function read_yin_leaf() in libyang <= v1.0.225, it doesn't check whether the value of retval->ext[r] is NULL. In some cases, it can be NULL, which leads to the operation of retval->ext[r]->flags that results in a crash.
In function read_yin_leaf() in libyang <= v1.0.225, it doesn't check whether the value of retval->ext[r] is NULL. In some cases, it can be NULL, which leads to the operation of retval->ext[r]->flags that results in a crash.
In function read_yin_leaf() in libyang <= v1.0.225, it doesn't check whether the value of retval->ext[r] is NULL. In some cases, it can be NULL, which leads to the operation of retval->ext[r]->flags that results in a crash.
Уязвимость функции read_yin_leaf() синтаксического анализатора и инструментария языка моделирования данных YANG Libyang, связанная с непроверенным возвращаемым значением, позволяющая нарушителю вызвать отказ в обслуживании
EPSS