Security Advisory

CVE-2019-19333

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-12-06 15:19:58

Last updated 2024-08-05 02:16:46

Assigner redhat

State PUBLISHED

Description

In all versions of libyang before 1.0-r5, a stack-based buffer overflow was discovered in the way libyang parses YANG files with a leaf of type "bits". An application that uses libyang to parse untrusted YANG files may be vulnerable to this flaw, which would allow an attacker to cause a denial of service or possibly gain code execution.

← Browse all CVEs View on cve.org ↗