CVE-2017-18926
HIGH7.1EPSS 1.8%raptor2 - security update
發布日:2020/11/6修改日:2026/3/9
描述
raptor_xml_writer_start_element_common in raptor_xml_writer.c in Raptor RDF Syntax Library 2.0.15 miscalculates the maximum nspace declarations for the XML writer, leading to heap-based buffer overflows (sometimes seen in raptor_qname_format_as_xml).
受影響套件(3)
- Debian/raptor2from 0, < 2.0.14-1.1
- Debian/raptor2from 0, < 2.0.14-1+deb9u1
- Debian/raptor2from 0, < 2.0.14-1.1~deb10u1
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH7.1 | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H |