• [SECURITY] [DSA 4785-1] raptor2 security update

    From Salvatore Bonaccorso@21:1/5 to All on Sat Nov 7 14:30:01 2020
    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA512

    - ------------------------------------------------------------------------- Debian Security Advisory DSA-4785-1 security@debian.org https://www.debian.org/security/ Salvatore Bonaccorso November 07, 2020 https://www.debian.org/security/faq
    - -------------------------------------------------------------------------

    Package : raptor2
    CVE ID : CVE-2017-18926
    Debian Bug : 973889

    It was discovered that raptor2, an RDF parser library, is prone to
    heap-based buffer overflow flaws, which could result in denial of
    service, or potentially the execution of arbitrary code, if a specially
    crafted file is processed.

    For the stable distribution (buster), this problem has been fixed in
    version 2.0.14-1.1~deb10u1.

    We recommend that you upgrade your raptor2 packages.

    For the detailed security status of raptor2 please refer to its security tracker page at:
    https://security-tracker.debian.org/tracker/raptor2

    Further information about Debian Security Advisories, how to apply
    these updates to your system and frequently asked questions can be
    found at: https://www.debian.org/security/

    Mailing list: debian-security-announce@lists.debian.org
    -----BEGIN PGP SIGNATURE-----

    iQKTBAEBCgB9FiEERkRAmAjBceBVMd3uBUy48xNDz0QFAl+mn89fFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2 NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQACgkQBUy48xND z0SOQxAAhv/qAQZzK8fDr2y1Uzdc6Jga8GtUAA5FrZnsK2MKaBELGKLme1RjI+5D ow2m998MG86Ml5EKPwj1hEKC6IJQqnYkBktXP/nsmPU5JHqye86IkOpIiG66VSYl 4iCnOOTsHxV7AxjiD/5dJDUi2AmCjFlZndSyQaXRe4vrVfy1k9Fm/oGmnRYdeC/Q U3VcpHCzfiKjq5cNZ8FYMcl/fM4b+aP8BI9DtgMA1/tbs3b61LlSKhDMoAVKejae vNQ9/gWLXrXepttR5r7SnnZaMc+ia4q+KnYPyIVS8qdvDOdUSuSE4lgrrsRbKEul 6JXEPm0qHV5ujXXuYCYum0PVWsBFilt4Yxjx0fKZsDfZNWUKnWj9ltAvnRPuodEu OvcjKo40SydTGl4oPzaXe2qepA1vVI38OGdUaYGOEq3RF/efXh2+AbAmWaL8fuKR oLcKX2Yn7UQcUx5PcCRy0Qa0+pNtlHIwWhgBdgHB368Invsg9sY5Bw3uKn0JRA1y d9urpbA/KJChDtOV0UH99CGefGE14Pd2fv/XbHtZArryq69gUyxvwfH2Bt1YLbLd /LLfyw11qZ4eci4dICoQ6tOqTHop1hbLbj9BSI5/7zU3bjSuPZKcYOM9LFGhcIho KDMo/FFPmFgeSk3Al9eY/WXCL8U3mkrr0YmNsyh0VBsiboDLIUY=
    =hKuq
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)