EPSS
Percentile
73.4%
libyang is vulnerable to denial of service (DoS). The attack exists because of self-referential union type containing leafrefs , allowing attacker to input malicious yang file to crash the application.
bugzilla.redhat.com/show_bug.cgi?id=1793924
github.com/CESNET/libyang/commit/4e610ccd87a2ba9413819777d508f71163fcc237
github.com/CESNET/libyang/compare/v0.16-r3...v1.0-r1
github.com/CESNET/libyang/issues/724