CVE-2020-25713

A malformed input file can lead to a segfault due to an out of bounds array access in raptor_xml_writer_start_element_common.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.5 MEDIUM
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
redhatCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 61%
VendorProductVersion
librdfraptor_rdf_syntax_library
2.0.15
debiandebian_linux
9.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
raptor2
bullseye
2.0.14-1.2
fixed
bookworm
2.0.15-4
fixed
sid
2.0.16-4
fixed
trixie
2.0.16-4
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
raptor
noble
dne
mantic
dne
lunar
dne
kinetic
dne
jammy
dne
impish
dne
hirsute
dne
groovy
dne
focal
dne
bionic
dne
xenial
needs-triage
trusty
dne
raptor2
noble
needs-triage
mantic
ignored
lunar
ignored
kinetic
ignored
jammy
needs-triage
impish
ignored
hirsute
ignored
groovy
ignored
focal
needs-triage
bionic
needs-triage
xenial
needs-triage
trusty
dne
Common Weakness Enumeration
References
http://www.openwall.com/lists/oss-security/2020/11/16/1
https://bugs.librdf.org/mantis/view.php?id=650
https://bugzilla.redhat.com/show_bug.cgi?id=1900685
https://lists.debian.org/debian-lts-announce/2021/12/msg00009.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/27EQ2JCVMKG3EYTBYO4642P773I2NYUV/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SUIND56AOKEHHBE4OYV57M73LLOLJRLV/
http://www.openwall.com/lists/oss-security/2020/11/16/1
https://bugs.librdf.org/mantis/view.php?id=650
https://bugzilla.redhat.com/show_bug.cgi?id=1900685
https://lists.debian.org/debian-lts-announce/2021/12/msg00009.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/27EQ2JCVMKG3EYTBYO4642P773I2NYUV/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SUIND56AOKEHHBE4OYV57M73LLOLJRLV/