Jvijtiuko

**Name of the Vulnerable Software and Affected Versions** libyang versions prior to v1.0-r3 **Description** An invalid memory access flaw is present in the function `resolve feature value()` when an if-feature statement is used inside a bit. Applications that use libyang to parse untrusted input yang files may crash. **Recommendations** For versions prior to v1.0-r3, update to version v1.0-r3 or later to resolve the issue. As a temporary workaround, consider avoiding the use of if-feature statements inside bits in yang files until a patch is available.

**Name of the Vulnerable Software and Affected Versions** libyang versions prior to 1.0-r1 **Description** An invalid memory access flaw is present in the function `resolve feature value()` when an if-feature statement is used inside a list key node, and the feature used is not defined. Applications that use libyang to parse untrusted input yang files may crash. **Recommendations** For versions prior to 1.0-r1, update to version 1.0-r1 or later to resolve the issue. As a temporary workaround, consider avoiding the use of if-feature statements inside list key nodes until a patch is available. Restrict access to untrusted input yang files to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** libyang versions prior to v1.0-r3 **Description** A double-free issue is present in the `yyparse()` function when a type statement is used in a notification statement. This affects applications that use libyang to parse untrusted input yang files, potentially causing a crash or code execution. **Recommendations** For versions prior to v1.0-r3, update to version v1.0-r3 or later to resolve the issue. As a temporary workaround, consider restricting the use of the `yyparse()` function when parsing untrusted input yang files until a patch is available.

**Name of the Vulnerable Software and Affected Versions** libyang versions prior to 1.0-r3 **Description** A NULL pointer dereference issue is present in the `lys extension instances free()` function due to a copy of unresolved extensions in `lys restr dup()`. This can cause applications that use libyang to parse untrusted input yang files to crash. **Recommendations** For versions prior to 1.0-r3, update to version 1.0-r3 or later to resolve the issue. As a temporary workaround, consider avoiding the use of `lys extension instances free()` and `lys restr dup()` functions when parsing untrusted input yang files until a patch is available. Restrict access to untrusted yang files to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: libyang versions prior to v1.0-r1 Description: A double-free issue is present in the `yyparse()` function when an empty description is used, potentially causing a crash or code execution. This issue affects applications that use libyang to parse untrusted input yang files. The flaw can be exploited by a remote attacker to execute arbitrary code or cause a denial of service. Recommendations: For versions prior to v1.0-r1, update to version v1.0-r1 or later to resolve the issue. As a temporary workaround, consider restricting the use of the `yyparse()` function when parsing untrusted input yang files until a patch is available. Avoid using empty descriptions in yang files to minimize the risk of exploitation.