Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In all versions of libyang before 1.0-r5, a stack-based buffer overflow was discovered in the way libyang parses YANG files with a leaf of type "identityref". An application that uses libyang to parse untrusted YANG files may be vulnerable to this flaw, which would allow an attacker to cause a denial of service or possibly gain code execution.
CVSS Information
N/A
Vulnerability Type
栈缓冲区溢出
Vulnerability Title
libyang 缓冲区错误漏洞
Vulnerability Description
libyang是一款使用C语言编写的YANG数据建模语言解析器和工具包。 libyang 1.0-r5之前版本中存在缓冲区错误漏洞。攻击者可借助不可信的YANG文件利用该漏洞导致拒绝服务或执行代码。
CVSS Information
N/A
Vulnerability Type
N/A