Overview

File _patchinfo of Package patchinfo.25559

<patchinfo incident="25559">
  <issue tracker="cve" id="2021-28905"/>
  <issue tracker="bnc" id="1186377">VUL-0: CVE-2021-28905: libyang: In function lys_node_free() in libyang &lt;= v1.0.225, it asserts that the value of node-&gt;module can't be NULL, which could lead to a DoS</issue>
  <packager>pgajdos</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for libyang</summary>
  <description>This update for libyang fixes the following issues:

- CVE-2021-28905: Fixed a reachable assertion which could be exploited
  by an attacker to cause a denial of service (bsc#1186377).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places