[Buildroot] [PATCH] package/libyang: security bump to version 1.0.240

Yann E. MORIN yann.morin.1998 at free.fr
Sat Sep 18 20:30:06 UTC 2021


Peter, All,

On 2021-09-18 20:58 +0200, Peter Korsgaard spake thusly:
> Fixes the following security issues:
> 
> - CVE-2021-28902: In function read_yin_container() in libyang <= v1.0.225,
>   it doesn't check whether the value of retval->ext[r] is NULL.  In some
>   cases, it can be NULL, which leads to the operation of
>   retval->ext[r]->flags that results in a crash.
> 
> - CVE-2021-28903: A stack overflow in libyang <= v1.0.225 can cause a denial
>   of service through function lyxml_parse_mem().  lyxml_parse_elem()
>   function will be called recursively, which will consume stack space and
>   lead to crash.
> 
> - CVE-2021-28904: In function ext_get_plugin() in libyang <= v1.0.225, it
>   doesn't check whether the value of revision is NULL.  If revision is NULL,
>   the operation of strcmp(revision, ext_plugins[u].revision) will lead to a
>   crash.
> 
> - CVE-2021-28905: In function lys_node_free() in libyang <= v1.0.225, it
>   asserts that the value of node->module can't be NULL.  But in some cases,
>   node->module can be null, which triggers a reachable assertion (CWE-617).
> 
> - CVE-2021-28906: In function read_yin_leaf() in libyang <= v1.0.225, it
>   doesn't check whether the value of retval->ext[r] is NULL.  In some cases,
>   it can be NULL, which leads to the operation of retval->ext[r]->flags that
>   results in a crash.
> 
> Signed-off-by: Peter Korsgaard <peter at korsgaard.com>

Applied to master, thanks.

Regards,
Yann E. MORIN.

> ---
>  package/libyang/libyang.hash | 2 +-
>  package/libyang/libyang.mk   | 2 +-
>  2 files changed, 2 insertions(+), 2 deletions(-)
> 
> diff --git a/package/libyang/libyang.hash b/package/libyang/libyang.hash
> index 94685cb4de..755ecf390a 100644
> --- a/package/libyang/libyang.hash
> +++ b/package/libyang/libyang.hash
> @@ -1,3 +1,3 @@
>  # Locally calculated
> -sha256  1b736443d2c69b5d7a71ac412655e6edab0647b18f35f7bf504b0a24e06cb046  libyang-1.0.225.tar.gz
> +sha256  8576cad398b451b1c622b0652a2030fcf83ee1d9a39e6cd93d17b0a5a43118d6  libyang-1.0.240.tar.gz
>  sha256  f942fe693e03e4e3ff67a351c00dc8f468a042e0d7273b0aa6bc53060b568112  LICENSE
> diff --git a/package/libyang/libyang.mk b/package/libyang/libyang.mk
> index ed61ec97d2..f784367ea3 100644
> --- a/package/libyang/libyang.mk
> +++ b/package/libyang/libyang.mk
> @@ -4,7 +4,7 @@
>  #
>  ################################################################################
>  
> -LIBYANG_VERSION = 1.0.225
> +LIBYANG_VERSION = 1.0.240
>  LIBYANG_SITE = $(call github,CESNET,libyang,v$(LIBYANG_VERSION))
>  LIBYANG_LICENSE = BSD-3-Clause
>  LIBYANG_LICENSE_FILES = LICENSE
> -- 
> 2.20.1
> 
> _______________________________________________
> buildroot mailing list
> buildroot at lists.buildroot.org
> https://lists.buildroot.org/mailman/listinfo/buildroot

-- 
.-----------------.--------------------.------------------.--------------------.
|  Yann E. MORIN  | Real-Time Embedded | /"\ ASCII RIBBON | Erics' conspiracy: |
| +33 662 376 056 | Software  Designer | \ / CAMPAIGN     |  ___               |
| +33 561 099 427 `------------.-------:  X  AGAINST      |  \e/  There is no  |
| http://ymorin.is-a-geek.org/ | _/*\_ | / \ HTML MAIL    |   v   conspiracy.  |
'------------------------------^-------^------------------^--------------------'


More information about the buildroot mailing list