Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2023-33285HistoryMay 22, 2023 - 3:15 a.m.
CVE-2023-33285
2023-05-2203:15:09
Debian Security Bug Tracker
security-tracker.debian.org
34
qt
buffer over-read
qdnslookup
dns server
unix
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
0.001 Low
EPSS
Percentile
23.1%
An issue was discovered in Qt 5.x before 5.15.14, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.1. QDnsLookup has a buffer over-read via a crafted reply from a DNS server.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | qt6-base | < 6.4.2+dfsg-10 | qt6-base_6.4.2+dfsg-10_all.deb |
| Debian | 999 | all | qt6-base | < 6.4.2+dfsg-10 | qt6-base_6.4.2+dfsg-10_all.deb |
| Debian | 13 | all | qt6-base | < 6.4.2+dfsg-10 | qt6-base_6.4.2+dfsg-10_all.deb |
| Debian | 12 | all | qtbase-opensource-src | < 5.15.8+dfsg-11 | qtbase-opensource-src_5.15.8+dfsg-11_all.deb |
| Debian | 11 | all | qtbase-opensource-src | <= 5.15.2+dfsg-9 | qtbase-opensource-src_5.15.2+dfsg-9_all.deb |
| Debian | 10 | all | qtbase-opensource-src | < 5.11.3+dfsg1-1+deb10u6 | qtbase-opensource-src_5.11.3+dfsg1-1+deb10u6_all.deb |
| Debian | 999 | all | qtbase-opensource-src | < 5.15.8+dfsg-11 | qtbase-opensource-src_5.15.8+dfsg-11_all.deb |
| Debian | 13 | all | qtbase-opensource-src | < 5.15.8+dfsg-11 | qtbase-opensource-src_5.15.8+dfsg-11_all.deb |
| Debian | 12 | all | qtbase-opensource-src-gles | <= 5.15.8+dfsg-3 | qtbase-opensource-src-gles_5.15.8+dfsg-3_all.deb |
| Debian | 11 | all | qtbase-opensource-src-gles | <= 5.15.2+dfsg-4 | qtbase-opensource-src-gles_5.15.2+dfsg-4_all.deb |
Related
osv
osv
CVE-2023-33285
2023-05-22 03:15:09
Moderate: qt5-qtbase security update
2023-11-14 00:00:00
Moderate: qt5 security and bug fix update
2023-11-07 00:00:00
ubuntucve
ubuntucve
CVE-2023-33285
2023-05-22 00:00:00
cve
cve
CVE-2023-33285
2023-05-22 03:15:09
redhatcve
redhatcve
CVE-2023-33285
2023-05-24 03:40:09
cbl_mariner
cbl_mariner
CVE-2023-33285 affecting package qt5-qtbase for versions less than 5.12.11-9
2023-08-10 16:37:57
nvd
nvd
CVE-2023-33285
2023-05-22 03:15:09
prion
prion
Buffer overflow
2023-05-22 03:15:00
cvelist
cvelist
CVE-2023-33285
2023-05-22 00:00:00
qt
qt
Security advisory: Qt Network
2023-06-01 00:00:00
almalinux
almalinux
Moderate: qt5-qtbase security update
2023-11-14 00:00:00
Moderate: qt5 security and bug fix update
2023-11-07 00:00:00
redhat
redhat
(RHSA-2023:6967) Moderate: qt5-qtbase security update
2023-11-14 08:41:31
(RHSA-2023:6369) Moderate: qt5 security and bug fix update
2023-11-07 06:03:15
nessus
nessus
SUSE SLES12 Security Update : libqt5-qtbase (SUSE-SU-2023:2971-1)
2023-07-27 00:00:00
RHEL 8 : qt5-qtbase (RHSA-2023:6967)
2023-11-14 00:00:00
Oracle Linux 8 : qt5-qtbase (ELSA-2023-6967)
2023-11-21 00:00:00
oraclelinux
oraclelinux
qt5-qtbase security update
2023-11-17 00:00:00
qt5 security and bug fix update
2023-11-12 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2023:2971-1)
2023-07-27 00:00:00
openSUSE: Security Advisory for qt6 (SUSE-SU-2023:3380-1)
2024-03-04 00:00:00
openSUSE: Security Advisory for qt6 (SUSE-SU-2023:3225-1)
2024-03-04 00:00:00
debian
debian
[SECURITY] [DLA 3805-1] qtbase-opensource-src security update
2024-04-30 22:47:38
ibm
ibm
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
0.001 Low
EPSS
Percentile
23.1%
Related for DEBIANCVE:CVE-2023-33285