USN-4630-1: Raptor vulnerability

11 November 2020

raptor2 could be made to crash or run programs as your login if it opened a specially crafted file.

Releases

Packages

  • raptor2 - RDF syntax library

Details

Hanno Böck discovered that Raptor incorrectly handled certain memory
operations. If a user were tricked into opening a specially crafted
document in an application linked against Raptor, an attacker could
cause the application to crash, resulting in a denial of service, or
possibly execute arbitrary code.

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 20.10
Ubuntu 20.04
Ubuntu 18.04
Ubuntu 16.04

After a standard system update you need to restart any applications which
use Raptor, such as LibreOffice, to make all the necessary changes.

References