CVE-2024-57823

Опубликовано: 10 янв. 2025

Источник: debian

EPSS Низкий

Описание

In Raptor RDF Syntax Library through 2.0.16, there is an integer underflow when normalizing a URI with the turtle parser in raptor_uri_normalize_path().

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
raptor2	fixed	2.0.16-6		package
raptor2	fixed	2.0.15-4+deb12u1	bookworm	package

Примечания

https://github.com/pedrib/PoC/blob/master/fuzzing/raptor-fuzz.md
https://github.com/dajobe/raptor/issues/70
https://github.com/dajobe/raptor/commit/da7a79976bd0314c23cce55d22495e7d29301c44

EPSS

Процентиль: 20%

0.00066

Низкий

Связанные уязвимости

CVE-2024-57823

CVSS3: 9.3

ubuntu

около 1 года назад

In Raptor RDF Syntax Library through 2.0.16, there is an integer underflow when normalizing a URI with the turtle parser in raptor_uri_normalize_path().

CVE-2024-57823

CVSS3: 7.3

redhat

около 1 года назад

In Raptor RDF Syntax Library through 2.0.16, there is an integer underflow when normalizing a URI with the turtle parser in raptor_uri_normalize_path().

CVE-2024-57823

CVSS3: 9.3

nvd

около 1 года назад

In Raptor RDF Syntax Library through 2.0.16, there is an integer underflow when normalizing a URI with the turtle parser in raptor_uri_normalize_path().

RLSA-2025:0314

rocky

около 1 года назад

Important: raptor2 security update

RLSA-2025:0312

rocky

11 месяцев назад

Important: raptor2 security update

EPSS

Процентиль: 20%

0.00066

Низкий