qt4-gui, qt5-gui -- DoS vulnerability in the BMP image handler

ID C9C3374D-C2C1-11E4-B236-5453ED2E2B49
Type freebsd
Reporter FreeBSD
Modified 2015-02-22T00:00:00


Richard J. Moore reports:

The builtin BMP decoder in QtGui prior to Qt 5.5 contained a bug that would lead to a division by zero when loading certain corrupt BMP files. This in turn would cause the application loading these hand crafted BMPs to crash.