PT-2025-3589 · Unknown+11 · Raptor Rdf Syntax Library+11

Pedro Ribeiro

Published

2025-01-10

Updated

2025-11-10

CVE-2024-57823

CVSS v3.1

9.3

Critical

Vector

AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Raptor RDF Syntax Library versions 2.0.0 through 2.0.16

Description The issue is related to an integer underflow when normalizing a URI with the turtle parser in the raptor uri normalize path() function. This problem occurs in the Raptor RDF Syntax Library. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited.

Recommendations For Raptor RDF Syntax Library versions 2.0.0 through 2.0.16, update to a version later than 2.0.16 to resolve the issue. As a temporary workaround, consider restricting the use of the raptor uri normalize path() function until a patch is available.

Exploit

Fix

Integer Underflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-191

Related Identifiers

ALSA-2025:0312

ALSA-2025:0314

ALT-PU-2025-12933

AZL-55472

AZL-55481

BDU:2025-03460

CESA-2025_0314

CVE-2024-57823

DLA-4343-1

INFSA-2025_0312

INFSA-2025_0314

MGASA-2025-0018

OESA-2025-1453

OPENSUSE-SU-2025:14646-1

RHSA-2025:0310

RHSA-2025:0311

RHSA-2025:0312

RHSA-2025:0313

RHSA-2025:0314

RHSA-2025:0315

RHSA-2025:0316

RHSA-2025:0318

RHSA-2025:0319

RHSA-2025:0326

RHSA-2025_0312

RHSA-2025_0314

RLSA-2025:0312

RLSA-2025:0314

ROSA-SA-2025-2761

SUSE-SU-2025:03244-1

SUSE-SU-2025:03257-1

SUSE-SU-2025_03244-1

SUSE-SU-2025_03257-1

USN-7316-1

USN-7869-1

Affected Products

Alt Linux

Almalinux

Astra Linux

Centos

Debian

Linuxmint

Raptor Rdf Syntax Library

Red Hat

Red Os

Rocky Linux

Suse

Ubuntu

PT-2025-3589 · Unknown+11 · Raptor Rdf Syntax Library+11

CVE-2024-57823

Weakness Enumeration

Related Identifiers

Affected Products

References · 72