Unrated severityNVD Advisory· Published Jan 22, 2020· Updated Aug 5, 2024
CVE-2019-20392
CVE-2019-20392
Description
An invalid memory access flaw is present in libyang before v1.0-r1 in the function resolve_feature_value() when an if-feature statement is used inside a list key node, and the feature used is not defined. Applications that use libyang to parse untrusted input yang files may crash.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- libyang/libyangdescription
Patches
Vulnerability mechanics
References
5News mentions
0No linked articles in our index yet.