Unrated severityNVD Advisory· Published Jan 22, 2020· Updated Aug 5, 2024
CVE-2019-20398
CVE-2019-20398
Description
A NULL pointer dereference is present in libyang before v1.0-r3 in the function lys_extension_instances_free() due to a copy of unresolved extensions in lys_restr_dup(). Applications that use libyang to parse untrusted input yang files may crash.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- libyang/libyangdescription
Patches
Vulnerability mechanics
References
5News mentions
0No linked articles in our index yet.