32 matches found
Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS : QtSvg vulnerabilities (USN-8337-1)
The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8337-1 advisory. It was discovered that QtSvg incorrectly handled certain SVG images. An attacker could possibly use this issue to cau...
Alibaba Cloud Linux 3 : 0196: qt5-qtsvg (ALINUX3-SA-2022:0196)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2022:0196 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2021-45930: Qt SVG in Qt 5.0.0 through 5.15.2 a...
Linux Distros Unpatched Vulnerability : CVE-2021-45930
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Qt SVG in Qt 5.0.0 through 5.15.2 and 6.0.0 through 6.2.1 has an out-of-bounds write in QtPrivate::QCommonArrayOps::growAppend called from QPainterPath::addPath...
RHEL 6 : qt (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - qt: QPluginLoader loads plugins relative to CWD which could result in arbitrary code execution...
GLSA-202405-26 : qtsvg: Multiple Vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202405-26 qtsvg: Multiple Vulnerabilities - Qt SVG in Qt 5.0.0 through 5.15.2 and 6.0.0 through 6.2.1 has an out-of-bounds write in QtPrivate::QCommonArrayOps::growAppend called from QPainterPath::addPath and...
openSUSE: Security Advisory for libqt5 (SUSE-SU-2023:2969-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE: Security Advisory for libqt5 (SUSE-SU-2023:2981-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2023:2967-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED12: libqt4 / libqt4-32bit / libqt4-devel / libqt4-devel-doc / etc (SUSE-SU-2023:4622-1)
The remote SUSE Linux SLED12 / SLEDSAP12 / SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:4622-1 advisory. - CVE-2021-45930: Fix out of-bounds write when parsing path nodes bsc1196654. - CVE-2023-32573: Fix missing...
SUSE-SU-2023:4622-1 Security update for libqt4
This update for libqt4 fixes the following issues: - CVE-2021-45930: Fix out of-bounds write when parsing path nodes bsc1196654. - CVE-2023-32573: Fix missing initialization of QSvgFont unitsPerEm bsc1211298. - CVE-2023-32763: Fix potential buffer when rendering a SVG file with an image inside...
Debian: Security Advisory (DLA-3539-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 3539-1] qt4-x11 security update
Debian LTS Advisory DLA-3539-1 [email protected] https://www.debian.org/lts/security/ Roberto C. Sánchez August 22, 2023 https://wiki.debian.org/LTS Package : qt4-x11 Version : 4:4.8.7+dfsg-18+deb10u2 CVE ID : CVE-2021-3481 CVE-2021-45930 CVE-2023-32573 CVE-2023-32763 CVE-2023-34410...
SUSE-SU-2023:3209-1 Security update for libqt5-qtsvg
This update for libqt5-qtsvg fixes the following issues: - CVE-2021-45930: Fixed an out-of-bounds write that may have lead to a denial-of-service bsc1196654. - CVE-2023-32573: Fixed missing initialization of QtSvg QSvgFont munitsPerEm variable bsc1211298...
SUSE SLED15: libQt5Svg5 / libQt5Svg5-32bit / libqt5-qtsvg-devel / etc (SUSE-SU-2023:2969-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:2969-1 advisory. - CVE-2021-45930: Fixed an out-of-bounds write that may have lead to a denial-of-service...
MGASA-2023-0231 Updated qt4/qtsvg5 packages fix security vulnerability
Out-of-bounds write in QtPrivate::QCommonArrayOps::growAppend CVE-2021-45930 QtSvg QSvgFont munitsPerEm initialization is mishandled. CVE-2023-32573...
Updated qt4/qtsvg5 packages fix security vulnerability
Out-of-bounds write in QtPrivate::QCommonArrayOps::growAppend CVE-2021-45930 QtSvg QSvgFont munitsPerEm initialization is mishandled. CVE-2023-32573...
Amazon Linux 2 : qt5-qtsvg (ALAS-2023-1968)
The version of qt5-qtsvg installed on the remote host is prior to 5.9.2-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-1968 advisory. Qt SVG in Qt 5.0.0 through 5.15.2 and 6.0.0 through 6.2.1 has an out-of-bounds write in QtPrivate::QCommonArrayOps::growAppend...
Medium: qt5-qtsvg
Issue Overview: Qt SVG in Qt 5.0.0 through 5.15.2 and 6.0.0 through 6.2.1 has an out-of-bounds write in QtPrivate::QCommonArrayOps::growAppend called from QPainterPath::addPath and QPathClipper::intersect. CVE-2021-45930 Affected Packages: qt5-qtsvg Note: This advisory is applicable to Amazon Lin...
Oracle Linux 8 : qt5-qtsvg (ELSA-2022-1920)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-1920 advisory. 5.15.2-4 - Fix out-of-bound write that may lead to DoS Resolves: bz2038487 Tenable has extracted the preceding description block directly from the Oracle Linux...
AlmaLinux 8 : qt5-qtsvg (ALSA-2022:1920)
The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2022:1920 advisory. - Qt SVG in Qt 5.0.0 through 5.15.2 and 6.0.0 through 6.2.1 has an out-of-bounds write in QtPrivate::QCommonArrayOps::growAppend called from QPainterPath::addPath...