CVE-2019-20392 in libyang
Riassunto
di MITRE
An invalid memory access flaw is present in libyang before v1.0-r1 in the function resolve_feature_value() when an if-feature statement is used inside a list key node, and the feature used is not defined. Applications that use libyang to parse untrusted input yang files may crash.
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.