CVE-2020-25713 — Improper Input Validation in Raptor RDF Syntax Library

CWE-20 — Improper Input Validation CWE-125 — Out-of-bounds Read CWE-787 — Out-of-bounds Write CWE-122 — Heap-based Buffer Overflow11 documents6 sources

Severity

6.5MEDIUMNVD

OSV7.1

EPSS

0.4%

top 38.00%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Librdf Raptor RDF Syntax Library Debian Raptor2 Debian Linux +1 more

Timeline

PublishedMay 13

Latest updateNov 10

Description

A malformed input file can lead to a segfault due to an out of bounds array access in raptor_xml_writer_start_element_common.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6

Affected Packages3 packages

▶debiandebian/raptor2< raptor2 2.0.14-1.2 (bookworm)

▶Ubuntulibrdf/raptor_rdf_syntax_library< 1.4.21-11ubuntu0.1~esm1

▶NVDlibrdf/raptor_rdf_syntax_library2.0.15

Also affects: Debian Linux 9.0, Fedora 32, 33

Patches

Patch: bugs.librdf.org ↗Patch: bugzilla.redhat.com ↗Patch: bugs.librdf.org ↗

🔴Vulnerability Details

OSV

raptor vulnerabilities↗2025-11-10

▶

OSV

raptor2 vulnerabilities↗2025-11-10

▶

OSV

raptor2 vulnerabilities↗2025-03-03

▶

GHSA

GHSA-5m9f-jxr5-6jv9: A malformed input file can lead to a segfault due to an out of bounds array access in raptor_xml_writer_start_element_common↗2022-05-24

▶

OSV

CVE-2020-25713: A malformed input file can lead to a segfault due to an out of bounds array access in raptor_xml_writer_start_element_common↗2021-05-13

▶

📋Vendor Advisories

Ubuntu

Raptor vulnerabilities↗2025-11-10

▶

Ubuntu

Raptor vulnerabilities↗2025-11-10

▶

Ubuntu

Raptor vulnerabilities↗2025-03-03

▶

Red Hat

raptor2: malformed input file can lead to a segfault due to an out of bounds array access in raptor_xml_writer_start_element_common↗2020-11-13

▶

Debian

CVE-2020-25713: raptor2 - A malformed input file can lead to a segfault due to an out of bounds array acce...↗2020

▶