rpm package
suse/libqt5-qtbase&distro=SUSE Linux Enterprise Module for Basesystem 15 SP7
pkg:rpm/suse/libqt5-qtbase&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP7
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2025-5455 | Hig | — | < 5.15.12+kde151-150600.3.9.1 | 5.15.12+kde151-150600.3.9.1 | Jun 2, 2025 | An issue was found in the private API function qDecodeDataUrl() in QtCore, which is used in QTextDocument and QNetworkReply, and, potentially, in user code. If the function was called with malformed data, for example, an URL that contained a "charset" parameter that lacked a val | |
| CVE-2025-30348 | — | < 5.15.12+kde151-150600.3.9.1 | 5.15.12+kde151-150600.3.9.1 | Mar 21, 2025 | encodeText in QDom in Qt before 6.8.0 has a complex algorithm involving XML string copy and inline replacement of parts of a string (with relocation of later data). |
- affected < 5.15.12+kde151-150600.3.9.1fixed 5.15.12+kde151-150600.3.9.1
An issue was found in the private API function qDecodeDataUrl() in QtCore, which is used in QTextDocument and QNetworkReply, and, potentially, in user code. If the function was called with malformed data, for example, an URL that contained a "charset" parameter that lacked a val
- CVE-2025-30348Mar 21, 2025affected < 5.15.12+kde151-150600.3.9.1fixed 5.15.12+kde151-150600.3.9.1
encodeText in QDom in Qt before 6.8.0 has a complex algorithm involving XML string copy and inline replacement of parts of a string (with relocation of later data).