Описание
In Raptor RDF Syntax Library through 2.0.16, there is a heap-based buffer over-read when parsing triples with the nquads parser in raptor_ntriples_parse_term_internal().
A flaw was found in the Raptor RDF syntax library (librdf). A heap-based buffer over-read condition may be triggered when parsing specially crafted RDF triples via the nquads parser. This issue can lead to an application crash or other undefined behavior.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 6 | raptor | Out of support scope | ||
| Red Hat Enterprise Linux 7 | raptor2 | Out of support scope | ||
| Red Hat Enterprise Linux 8 | raptor2 | Out of support scope | ||
| Red Hat Enterprise Linux 9 | raptor2 | Will not fix |
Показывать по
Дополнительная информация
Статус:
EPSS
4 Medium
CVSS3
Связанные уязвимости
In Raptor RDF Syntax Library through 2.0.16, there is a heap-based buffer over-read when parsing triples with the nquads parser in raptor_ntriples_parse_term_internal().
In Raptor RDF Syntax Library through 2.0.16, there is a heap-based buffer over-read when parsing triples with the nquads parser in raptor_ntriples_parse_term_internal().
In Raptor RDF Syntax Library through 2.0.16, there is a heap-based buf ...
In Raptor RDF Syntax Library through 2.0.16, there is a heap-based buffer over-read when parsing triples with the nquads parser in raptor_ntriples_parse_term_internal().
Уязвимость функции raptor_ntriples_parse_term_internal() библиотеки RAPtor, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
4 Medium
CVSS3