-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-4785-1 security@debian.org https://www.debian.org/security/ Salvatore Bonaccorso November 07, 2020 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : raptor2 CVE ID : CVE-2017-18926 Debian Bug : 973889 It was discovered that raptor2, an RDF parser library, is prone to heap-based buffer overflow flaws, which could result in denial of service, or potentially the execution of arbitrary code, if a specially crafted file is processed. For the stable distribution (buster), this problem has been fixed in version 2.0.14-1.1~deb10u1. We recommend that you upgrade your raptor2 packages. For the detailed security status of raptor2 please refer to its security tracker page at: https://security-tracker.debian.org/tracker/raptor2 Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE----- iQKTBAEBCgB9FiEERkRAmAjBceBVMd3uBUy48xNDz0QFAl+mn89fFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2 NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQACgkQBUy48xND z0SOQxAAhv/qAQZzK8fDr2y1Uzdc6Jga8GtUAA5FrZnsK2MKaBELGKLme1RjI+5D ow2m998MG86Ml5EKPwj1hEKC6IJQqnYkBktXP/nsmPU5JHqye86IkOpIiG66VSYl 4iCnOOTsHxV7AxjiD/5dJDUi2AmCjFlZndSyQaXRe4vrVfy1k9Fm/oGmnRYdeC/Q U3VcpHCzfiKjq5cNZ8FYMcl/fM4b+aP8BI9DtgMA1/tbs3b61LlSKhDMoAVKejae vNQ9/gWLXrXepttR5r7SnnZaMc+ia4q+KnYPyIVS8qdvDOdUSuSE4lgrrsRbKEul 6JXEPm0qHV5ujXXuYCYum0PVWsBFilt4Yxjx0fKZsDfZNWUKnWj9ltAvnRPuodEu OvcjKo40SydTGl4oPzaXe2qepA1vVI38OGdUaYGOEq3RF/efXh2+AbAmWaL8fuKR oLcKX2Yn7UQcUx5PcCRy0Qa0+pNtlHIwWhgBdgHB368Invsg9sY5Bw3uKn0JRA1y d9urpbA/KJChDtOV0UH99CGefGE14Pd2fv/XbHtZArryq69gUyxvwfH2Bt1YLbLd /LLfyw11qZ4eci4dICoQ6tOqTHop1hbLbj9BSI5/7zU3bjSuPZKcYOM9LFGhcIho KDMo/FFPmFgeSk3Al9eY/WXCL8U3mkrr0YmNsyh0VBsiboDLIUY= =hKuq -----END PGP SIGNATURE-----