[ALSA-2026:24545] Important: libyang security update
Type:
security
Severity:
important
Release date:
2026-06-09
Description:
Libyang is YANG data modeling language parser and toolkit written (and providing API) in C. Security Fix(es): * libyang: libyang: Denial of Service or arbitrary code execution via maliciously crafted LYB binary blob (CVE-2026-44673) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 libyang-1.0.184-2.el8_10.aarch64.rpm 031ae500cd71086d843183cca65bc2495ee14bcc5232517995f9f660199bc3ab
i686 libyang-1.0.184-2.el8_10.i686.rpm 62aca88a014bf0349ab99f81d927d04a0999bac8484299a3d08562b02c0f9db8
ppc64le libyang-1.0.184-2.el8_10.ppc64le.rpm 4e11e171b3b7b67919026d26a2153d2ba149767bfcec8f33fd365ec9916d63ec
s390x libyang-1.0.184-2.el8_10.s390x.rpm 3e2625117d8f44caecf245aeb5b4b95184873b9079cbb8aef4290f550119bd78
x86_64 libyang-1.0.184-2.el8_10.x86_64.rpm d9cd94c888380015174a5a200e4d6fee275be15a1ca282cde385a0dcadd0483f
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.