ELSA-2019-4360

ELSA-2019-4360 - libyang security update

Type:SECURITY
Severity:IMPORTANT
Release Date:2019-12-24

Description


[0.16.105-3.2]
- Related: #1779573 - Fixing a few covscan issues

[0.16.105-3.1]
- Resolves: #1779573 - CVE-2019-19333 libyang: stack-based buffer overflow in make_canonical when bits leaf type is used
- Resolves: #1779576 - CVE-2019-19334 libyang: stack-based buffer overflow in make_canonical when identityref leaf type is used


Related CVEs


CVE-2019-19333
CVE-2019-19334

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 8 (aarch64) libyang-0.16.105-3.el8_1.2.src.rpm0b112a3d27c5c1429058587d56f6a2bd-
libyang-0.16.105-3.el8_1.2.aarch64.rpm8bdc39b3ae1250e4c39fa8893f159350-
Oracle Linux 8 (x86_64) libyang-0.16.105-3.el8_1.2.src.rpm0b112a3d27c5c1429058587d56f6a2bd-
libyang-0.16.105-3.el8_1.2.i686.rpma86688324e9e5eaa8e262348ea0c33dd-
libyang-0.16.105-3.el8_1.2.x86_64.rpm949b4a55267cab3e4e4894a5b917cffa-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete