Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2019-20392

An invalid memory access flaw is present in libyang before v1.0-r1 in the function resolve_feature_value() when an if-feature statement is used inside a list key node, and the feature used is not defined. Applications that use libyang to parse untrusted input yang files may crash.

Published

2020-01-22T22:15:10.143

Last Modified

2024-11-21T04:38:22.570

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.5 (MEDIUM)

CVSSv2 Vector

AV:N/AC:M/Au:N/C:N/I:N/A:P

Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality Impact: NONE
Integrity Impact: NONE
Availability Impact: PARTIAL

Exploitability Score

8.6

Impact Score

2.9

Weaknesses

Type: Primary
CWE-119

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	cesnet	libyang	0.11	Yes
Application	cesnet	libyang	0.11	Yes
Application	cesnet	libyang	0.12	Yes
Application	cesnet	libyang	0.12	Yes
Application	cesnet	libyang	0.13	Yes
Application	cesnet	libyang	0.13	Yes
Application	cesnet	libyang	0.14	Yes
Application	cesnet	libyang	0.15	Yes
Application	cesnet	libyang	0.16	Yes
Application	cesnet	libyang	0.16	Yes
Application	cesnet	libyang	0.16	Yes

References

https://bugzilla.redhat.com/show_bug.cgi?id=1793922 Issue Tracking, Patch, Third Party Advisory ([email protected])
https://github.com/CESNET/libyang/commit/32fb4993bc8bb49e93e84016af3c10ea53964be5 Patch, Third Party Advisory ([email protected])
https://github.com/CESNET/libyang/compare/v0.16-r3...v1.0-r1 Third Party Advisory ([email protected])
https://github.com/CESNET/libyang/issues/723 Exploit, Third Party Advisory ([email protected])
https://lists.debian.org/debian-lts-announce/2023/09/msg00019.html ([email protected])
https://bugzilla.redhat.com/show_bug.cgi?id=1793922 Issue Tracking, Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/CESNET/libyang/commit/32fb4993bc8bb49e93e84016af3c10ea53964be5 Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/CESNET/libyang/compare/v0.16-r3...v1.0-r1 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/CESNET/libyang/issues/723 Exploit, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://lists.debian.org/debian-lts-announce/2023/09/msg00019.html (af854a3a-2127-422b-91ae-364da2661108)