Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2023-24607HistoryApr 15, 2023 - 1:15 a.m.
CVE-2023-24607
2023-04-1501:15:07
Debian Security Bug Tracker
security-tracker.debian.org
11
qt
sql odbc
denial of service
vulnerability
unix
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.002 Low
EPSS
Percentile
54.8%
Qt before 6.4.3 allows a denial of service via a crafted string when the SQL ODBC driver plugin is used and the size of SQLTCHAR is 4. The affected versions are 5.x before 5.15.13, 6.x before 6.2.8, and 6.3.x before 6.4.3.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | qt6-base | < 6.4.2+dfsg-7 | qt6-base_6.4.2+dfsg-7_all.deb |
| Debian | 999 | all | qt6-base | < 6.4.2+dfsg-7 | qt6-base_6.4.2+dfsg-7_all.deb |
| Debian | 13 | all | qt6-base | < 6.4.2+dfsg-7 | qt6-base_6.4.2+dfsg-7_all.deb |
| Debian | 12 | all | qtbase-opensource-src | < 5.15.8+dfsg-3 | qtbase-opensource-src_5.15.8+dfsg-3_all.deb |
| Debian | 11 | all | qtbase-opensource-src | <= 5.15.2+dfsg-9 | qtbase-opensource-src_5.15.2+dfsg-9_all.deb |
| Debian | 10 | all | qtbase-opensource-src | < 5.11.3+dfsg1-1+deb10u6 | qtbase-opensource-src_5.11.3+dfsg1-1+deb10u6_all.deb |
| Debian | 999 | all | qtbase-opensource-src | < 5.15.8+dfsg-3 | qtbase-opensource-src_5.15.8+dfsg-3_all.deb |
| Debian | 13 | all | qtbase-opensource-src | < 5.15.8+dfsg-3 | qtbase-opensource-src_5.15.8+dfsg-3_all.deb |
| Debian | 12 | all | qtbase-opensource-src-gles | < 5.15.8+dfsg-3 | qtbase-opensource-src-gles_5.15.8+dfsg-3_all.deb |
| Debian | 11 | all | qtbase-opensource-src-gles | < 5.15.2+dfsg-4 | qtbase-opensource-src-gles_5.15.2+dfsg-4_all.deb |
Related
cve
cve
CVE-2023-24607
2023-04-15 01:15:07
prion
prion
Code injection
2023-04-15 01:15:00
cvelist
cvelist
CVE-2023-24607
2023-04-15 00:00:00
osv
osv
CVE-2023-24607
2023-04-15 01:15:07
qtbase-opensource-src - security update
2024-05-01 00:00:00
ubuntucve
ubuntucve
CVE-2023-24607
2023-04-15 00:00:00
amazon
amazon
Medium: qt5-qtbase
2023-05-11 17:49:00
nessus
nessus
Amazon Linux 2 : qt5-qtbase (ALAS-2023-2036)
2023-05-17 00:00:00
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : qt6-base (SUSE-SU-2023:1567-1)
2023-03-25 00:00:00
SUSE SLES12 Security Update : libqt5-qtbase (SUSE-SU-2023:2971-1)
2023-07-27 00:00:00
cbl_mariner
cbl_mariner
CVE-2023-24607 affecting package qt5-qtbase 5.12.11-3
2023-05-03 19:35:26
CVE-2023-24607 affecting package qt5-qtbase for versions less than 5.15.9-1
2023-05-25 09:38:10
openvas
openvas
Fedora: Security Advisory for qt6-qtbase (FEDORA-2023-f2965f082c)
2023-02-13 00:00:00
Fedora: Security Advisory for qt5-qtbase (FEDORA-2023-54a88e1ae4)
2023-02-25 00:00:00
Fedora: Security Advisory for qt5-qtbase (FEDORA-2023-f2965f082c)
2023-02-13 00:00:00
nvd
nvd
CVE-2023-24607
2023-04-15 01:15:07
fedora
fedora
[SECURITY] Fedora 37 Update: qt5-qtbase-5.15.8-5.fc37
2023-02-13 00:45:10
[SECURITY] Fedora 37 Update: qt6-qtbase-6.4.2-4.fc37
2023-02-13 00:45:12
[SECURITY] Fedora 36 Update: qt5-qtbase-5.15.8-5.fc36
2023-02-24 03:47:19
redhatcve
redhatcve
CVE-2023-24607
2023-04-17 06:00:38
vulnrichment
vulnrichment
CVE-2023-24607
2023-04-15 00:00:00
mageia
mageia
Updated qtbase5 packages fix security vulnerability
2023-02-21 00:25:36
debian
debian
[SECURITY] [DLA 3805-1] qtbase-opensource-src security update
2024-04-30 22:47:38
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.002 Low
EPSS
Percentile
54.8%
Related for DEBIANCVE:CVE-2023-24607