Oval Definition:oval:com.redhat.rhsa:def:20211842
Revision Date:2021-05-18Version:636
Title:RHSA-2021:1842: raptor2 security and bug fix update (Moderate)
Description:Raptor is the RDF Parser Toolkit for Redland that provides a set of standalone RDF parsers, generating triples from RDF/XML or N-Triples.

Security Fix(es):

  • raptor: heap-based buffer overflows due to an error in calculating the maximum nspace declarations for the XML writer (CVE-2017-18926)

  • raptor2: malformed input file can lead to a segfault due to an out of bounds array access in raptor_xml_writer_start_element_common (CVE-2020-25713)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

    Additional Changes:

    For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.4 Release Notes linked from the References section.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2017-18926
    CVE-2020-25713
    RHSA-2021:1842
    Platform(s):Red Hat Enterprise Linux 8
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 8 is installed
  • OR Red Hat CoreOS 4 is installed
  • AND
  • raptor2 is earlier than 0:2.0.15-16.el8
  • AND raptor2 is signed with Red Hat redhatrelease2 key
  • raptor2-devel is earlier than 0:2.0.15-16.el8
  • AND raptor2-devel is signed with Red Hat redhatrelease2 key
    • BACK