Stay Connected:

ELSA-2019-4360

ELSA-2019-4360 - libyang security update

Type:SECURITY
Impact:IMPORTANT
Release Date:2019-12-24

Description


[0.16.105-3.2]
- Related: #1779573 - Fixing a few covscan issues

[0.16.105-3.1]
- Resolves: #1779573 - CVE-2019-19333 libyang: stack-based buffer overflow in make_canonical when bits leaf type is used
- Resolves: #1779576 - CVE-2019-19334 libyang: stack-based buffer overflow in make_canonical when identityref leaf type is used


Related CVEs


CVE-2019-19334
CVE-2019-19333

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 8 (aarch64) libyang-0.16.105-3.el8_1.2.src.rpm83b2e976ad3121157762a6601068b1c2727aa8172cda1f456043c869528f0a83-ol8_aarch64_appstream
libyang-0.16.105-3.el8_1.2.src.rpm83b2e976ad3121157762a6601068b1c2727aa8172cda1f456043c869528f0a83-ol8_aarch64_distro_builder
libyang-0.16.105-3.el8_1.2.aarch64.rpm9f5ea6cfd5025daa501c21a3f217507321eba609256094dc0b7b1879af3583c9-ol8_aarch64_appstream
Oracle Linux 8 (x86_64) libyang-0.16.105-3.el8_1.2.src.rpm83b2e976ad3121157762a6601068b1c2727aa8172cda1f456043c869528f0a83-ol8_x86_64_appstream
libyang-0.16.105-3.el8_1.2.src.rpm83b2e976ad3121157762a6601068b1c2727aa8172cda1f456043c869528f0a83-ol8_x86_64_baseos_latest
libyang-0.16.105-3.el8_1.2.src.rpm83b2e976ad3121157762a6601068b1c2727aa8172cda1f456043c869528f0a83-ol8_x86_64_distro_builder
libyang-0.16.105-3.el8_1.2.i686.rpm55ac73b97f3259778afb9a33fc9e0e4c55629c46291427ee7926753e825e7eea-ol8_x86_64_appstream
libyang-0.16.105-3.el8_1.2.x86_64.rpm2488724e73e0a5fb26780183c8865b15784c5916a136a254f3f601f712fd3955-ol8_x86_64_appstream



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights