Unrated severityNVD Advisory· Published Jan 22, 2020· Updated Aug 5, 2024
CVE-2019-20394
CVE-2019-20394
Description
A double-free is present in libyang before v1.0-r3 in the function yyparse() when a type statement in used in a notification statement. Applications that use libyang to parse untrusted input yang files may be vulnerable to this flaw, which would cause a crash or potentially code execution.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- libyang/libyangdescription
Patches
Vulnerability mechanics
References
5News mentions
0No linked articles in our index yet.