CVE-2017-18926
HIGH7.1EPSS 1.8%raptor2 - security update
Published: 11/6/2020Modified: 4/28/2026
Description
raptor_xml_writer_start_element_common in raptor_xml_writer.c in Raptor RDF Syntax Library 2.0.15 miscalculates the maximum nspace declarations for the XML writer, leading to heap-based buffer overflows (sometimes seen in raptor_qname_format_as_xml).
Affected packages (3)
- Debian/raptor2from 0, < 2.0.14-1.1
- Debian/raptor2from 0, < 2.0.14-1+deb9u1
- Debian/raptor2from 0, < 2.0.14-1.1~deb10u1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH7.1 | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H |