Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
freebsdFreeBSD5713BFDA-E27D-11E4-B2CE-5453ED2E2B49
HistoryApr 12, 2015 - 12:00 a.m.

qt4-imageformats, qt4-gui, qt5-gui -- Multiple Vulnerabilities in Qt Image Format Handling

2015-04-1200:00:00
vuxml.freebsd.org
15

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.042 Low

EPSS

Percentile

92.1%

JSON

Richard J. Moore reports:

Due to two recent vulnerabilities identified in the built-in image
format handling code, it was decided that this area required further
testing to determine if further issues remained. Fuzzing using
afl-fuzz located a number of issues in the handling of BMP, ICO and
GIF files. The issues exposed included denial of service and buffer
overflows leading to heap corruption. It is possible the latter could
be used to perform remote code execution.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchqt4-imageformats< 4.8.6_3UNKNOWN
FreeBSDanynoarchqt4-gui< 4.8.6_5UNKNOWN
FreeBSDanynoarchqt5-gui< 5.4.1_1UNKNOWN

Related

fedora 10
nessus 20
gentoo 1
mageia 1
openvas 20
securityvulns 2
slackware 1
ubuntu 1
osv 1
debian 1
debiancve 3
prion 3
ubuntucve 3
cve 3
fedora
fedora
[SECURITY] Fedora 22 Update: qt-4.8.6-28.fc22
2015-04-23 16:10:14
[SECURITY] Fedora 22 Update: qt3-3.3.8b-63.fc22
2015-04-24 22:48:40
[SECURITY] Fedora 22 Update: qt5-qtbase-5.4.1-9.fc22
2015-04-21 19:11:45
nessus
nessus
Fedora 20 : qt5-qtbase-5.4.1-9.fc20 (2015-6315)
2015-04-27 00:00:00
GLSA-201603-10 : QtGui: Multiple vulnerabilities
2016-03-14 00:00:00
Fedora 21 : qt5-qtbase-5.4.1-9.fc21 (2015-6364)
2015-04-27 00:00:00
gentoo
gentoo
QtGui: Multiple vulnerabilities
2016-03-12 00:00:00
mageia
mageia
Updated qt3 qt4 & qtbase5 packages fix security vulnerabilities
2015-05-06 19:44:10
openvas
openvas
Gentoo Security Advisory GLSA 201603-10
2016-03-14 00:00:00
Mageia: Security Advisory (MGASA-2015-0198)
2022-01-28 00:00:00
Fedora Update for qt FEDORA-2015-6123
2015-07-07 00:00:00
securityvulns
securityvulns
qt multiple security vulnerabilities
2015-05-05 00:00:00
[slackware-security] qt &#40;SSA:2015-111-13&#41;
2015-05-05 00:00:00
slackware
slackware
[slackware-security] qt
2015-04-22 01:24:32
ubuntu
ubuntu
Qt vulnerabilities
2015-06-03 00:00:00
osv
osv
qt4-x11 - security update
2015-04-30 00:00:00
debian
debian
[SECURITY] [DLA 210-1] qt4-x11 security update
2015-04-30 11:59:25
debiancve
debiancve
CVE-2015-1858
2015-05-12 19:59:00
CVE-2015-1859
2015-05-12 19:59:00
CVE-2015-1860
2015-05-12 19:59:00
prion
prion
Buffer overflow
2015-05-12 19:59:00
Buffer overflow
2015-05-12 19:59:00
Buffer overflow
2015-05-12 19:59:00
ubuntucve
ubuntucve
CVE-2015-1860
2015-05-12 00:00:00
CVE-2015-1859
2015-05-12 00:00:00
CVE-2015-1858
2015-05-12 00:00:00
cve
cve
CVE-2015-1860
2015-05-12 19:59:00
CVE-2015-1859
2015-05-12 19:59:00
CVE-2015-1858
2015-05-12 19:59:00

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.042 Low

EPSS

Percentile

92.1%

JSON
Related for 5713BFDA-E27D-11E4-B2CE-5453ED2E2B49
fedora10nessus20gentoo1mageia1openvas20securityvulns2slackware1ubuntu1osv1debian1debiancve3prion3ubuntucve3cve3