4 matches found
CVE-2025-4211
Improper Link Resolution Before File Access 'Link Following' vulnerability in QFileSystemEngine in the Qt corelib module on Windows which potentially allows Symlink Attacks and the use of Malicious Files. Issue originates from CVE-2024-38081. The vulnerability arises from the use of the GetTempPa...
CVE-2025-3512
There is a Heap-based Buffer Overflow vulnerability in QTextMarkdownImporter. This requires an incorrectly formatted markdown file to be passed to QTextMarkdownImporter to trigger the overflow.This issue affects Qt from 6.8.0 to 6.8.4. Versions up to 6.6.0 are known to be unaffected, and the fix ...
CVE-2025-3512
CVE-2025-3512 affects Qt’s QTextMarkdownImporter: a Heap-based Buffer Overflow exposed by incorrectly formatted Markdown files. Affected versions are Qt 6.8.0–6.8.4; Qt 6.6.0 and earlier are unaffected. The issue is mitigated by upgrading to 6.8.4 or later, where the fix is implemented. The vulne...
UBUNTU-CVE-2024-25580
An issue was discovered in gui/util/qktxhandler.cpp in Qt before 5.15.17, 6.x before 6.2.12, 6.3.x through 6.5.x before 6.5.5, and 6.6.x before 6.6.2. A buffer overflow and application crash can occur via a crafted KTX image file...