Several security issues were fixed in Raptor.
Software Description:
- raptor2: RDF syntax library
Details:
Hanno Böck discovered that Raptor incorrectly handled memory operations
when processing certain input files. An attacker could possibly use this
issue to cause Raptor to crash, resulting in a denial of service.
(CVE-2020-25713)
Pedro Ribeiro discovered that Raptor incorrectly handled parsing certain
tuples. An attacker could possibly use this issue to cause Raptor to crash,
resulting in a denial of service. (CVE-2024-57822)
Pedro Ribeiro discovered that Raptor incorrectly handled parsing certain
turtles. An attacker could use this issue to cause Raptor to crash,
resulting in a denial of service, or possibly execute arbitrary code.
(CVE-2024-57823)
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 18.04 LTS
libraptor2-0 2.0.14-1ubuntu0.18.04.1+esm1
Available with Ubuntu Pro
raptor2-utils 2.0.14-1ubuntu0.18.04.1+esm1
Available with Ubuntu Pro
Ubuntu 16.04 LTS
libraptor2-0 2.0.14-1ubuntu0.16.04.1+esm1
Available with Ubuntu Pro
raptor2-utils 2.0.14-1ubuntu0.16.04.1+esm1
Available with Ubuntu Pro
In general, a standard system update will make all the necessary changes.https://ubuntu.com/security/notices/USN-7869-1
CVE-2020-25713, CVE-2024-57822, CVE-2024-57823
Get the latest Linux and open source security news straight to your inbox.