Debian Bug report logs -
#1034724
libyang2: CVE-2023-26917
Package:
src:libyang2;
Maintainer for src:libyang2 is Ondřej Surý <ondrej@debianorg>;
Reported by: Moritz Mühlenhoff <jmm@inutilorg>
Date: Sat, 22 Apr 2023 17:33:09 UTC
Severity: important
Tags: security, upstream
Found in version libyang2/2130-2
F ...
DescriptionThe MITRE CVE dictionary describes this issue as: libyang from v20164 to v2130 was discovered to contain a NULL pointer dereference via the function lysp_stmt_validate_value at lys_parse_memc ...