Unrated severityNVD Advisory· Published Jan 22, 2020· Updated Aug 5, 2024
CVE-2019-20393
CVE-2019-20393
Description
A double-free is present in libyang before v1.0-r1 in the function yyparse() when an empty description is used. Applications that use libyang to parse untrusted input yang files may be vulnerable to this flaw, which would cause a crash or potentially code execution.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- libyang/libyangdescription
Patches
Vulnerability mechanics
References
5News mentions
0No linked articles in our index yet.