rpm package
opensuse/qt3&distro=openSUSE Tumbleweed
pkg:rpm/opensuse/qt3&distro=openSUSE%20Tumbleweed
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2015-1860 | — | < 3.3.8c-140.6 | 3.3.8c-140.6 | May 12, 2015 | Multiple buffer overflows in gui/image/qgifhandler.cpp in the QtBase module in Qt before 4.8.7 and 5.x before 5.4.2 allow remote attackers to cause a denial of service (segmentation fault) and possibly execute arbitrary code via a crafted GIF image. | ||
| CVE-2015-0295 | — | < 3.3.8c-140.6 | 3.3.8c-140.6 | Mar 25, 2015 | The BMP decoder in QtGui in QT before 5.5 does not properly calculate the masks used to extract the color components, which allows remote attackers to cause a denial of service (divide-by-zero and crash) via a crafted BMP file. | ||
| CVE-2013-4549 | — | < 3.3.8c-140.6 | 3.3.8c-140.6 | Dec 23, 2013 | QXmlSimpleReader in Qt before 5.2 allows context-dependent attackers to cause a denial of service (memory consumption) via an XML Entity Expansion (XEE) attack. |
- CVE-2015-1860May 12, 2015affected < 3.3.8c-140.6fixed 3.3.8c-140.6
Multiple buffer overflows in gui/image/qgifhandler.cpp in the QtBase module in Qt before 4.8.7 and 5.x before 5.4.2 allow remote attackers to cause a denial of service (segmentation fault) and possibly execute arbitrary code via a crafted GIF image.
- CVE-2015-0295Mar 25, 2015affected < 3.3.8c-140.6fixed 3.3.8c-140.6
The BMP decoder in QtGui in QT before 5.5 does not properly calculate the masks used to extract the color components, which allows remote attackers to cause a denial of service (divide-by-zero and crash) via a crafted BMP file.
- CVE-2013-4549Dec 23, 2013affected < 3.3.8c-140.6fixed 3.3.8c-140.6
QXmlSimpleReader in Qt before 5.2 allows context-dependent attackers to cause a denial of service (memory consumption) via an XML Entity Expansion (XEE) attack.