Описание
Moderate: raptor2 security and bug fix update
Raptor is the RDF Parser Toolkit for Redland that provides a set of standalone RDF parsers, generating triples from RDF/XML or N-Triples.
Security Fix(es):
-
raptor: heap-based buffer overflows due to an error in calculating the maximum nspace declarations for the XML writer (CVE-2017-18926)
-
raptor2: malformed input file can lead to a segfault due to an out of bounds array access in raptor_xml_writer_start_element_common (CVE-2020-25713)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Rocky Linux 8.4 Release Notes linked from the References section.
Затронутые продукты
Rocky Linux 8
Связанные CVE
Исправления
- Red Hat - 1896120
- Red Hat - 1900685
Связанные уязвимости
ELSA-2021-1842: raptor2 security and bug fix update (MODERATE)
A malformed input file can lead to a segfault due to an out of bounds array access in raptor_xml_writer_start_element_common.
A malformed input file can lead to a segfault due to an out of bounds array access in raptor_xml_writer_start_element_common.
A malformed input file can lead to a segfault due to an out of bounds array access in raptor_xml_writer_start_element_common.
A malformed input file can lead to a segfault due to an out of bounds ...