Unrated severityNVD Advisory· Published Mar 27, 2024· Updated Nov 4, 2025

CVE-2024-25580

Description

An issue was discovered in gui/util/qktxhandler.cpp in Qt before 5.15.17, 6.x before 6.2.12, 6.3.x through 6.5.x before 6.5.5, and 6.6.x before 6.6.2. A buffer overflow and application crash can occur via a crafted KTX image file.

Affected products

Qt/Qtdescription
osv-coords12 versions
pkg:rpm/almalinux/qt5-qtbase pkg:rpm/almalinux/qt5-qtbase-common pkg:rpm/almalinux/qt5-qtbase-devel pkg:rpm/almalinux/qt5-qtbase-examples pkg:rpm/almalinux/qt5-qtbase-gui pkg:rpm/almalinux/qt5-qtbase-mysql pkg:rpm/almalinux/qt5-qtbase-odbc pkg:rpm/almalinux/qt5-qtbase-postgresql pkg:rpm/almalinux/qt5-qtbase-private-devel pkg:rpm/almalinux/qt5-qtbase-static pkg:rpm/opensuse/libqt5-qtbase&distro=openSUSE%20Tumbleweed pkg:rpm/opensuse/qt6-base&distro=openSUSE%20Tumbleweed
< 5.15.9-9.el9+ 11 more
- (no CPE)range: < 5.15.9-9.el9
- (no CPE)range: < 5.15.9-9.el9
- (no CPE)range: < 5.15.9-9.el9
- (no CPE)range: < 5.15.9-9.el9
- (no CPE)range: < 5.15.9-9.el9
- (no CPE)range: < 5.15.9-9.el9
- (no CPE)range: < 5.15.9-9.el9
- (no CPE)range: < 5.15.9-9.el9
- (no CPE)range: < 5.15.9-9.el9
- (no CPE)range: < 5.15.9-9.el9
- (no CPE)range: < 5.15.12+kde151-1.1
- (no CPE)range: < 6.6.2-2.1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.qt.io/blog/security-advisory-potential-buffer-overflow-when-reading-ktx-imagesmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000