24 matches found
MiracleLinux 8 : qt5-qtbase-5.15.2-4.el8.ML.1 (AXSA:2022-3605:01)
The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3605:01 advisory. qt: out-of-bounds write in QOutlineMapper::convertPath called from QRasterPaintEngine::fill and QPaintEngineEx::stroke CVE-2021-38593 Tenable has extracted t...
Alibaba Cloud Linux 3 : 0193: qt5-qtbase (ALINUX3-SA-2022:0193)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2022:0193 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2021-38593: Qt 5.x before 5.15.6 and 6.x throug...
Linux Distros Unpatched Vulnerability : CVE-2021-38593
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Qt 5.x before 5.15.6 and 6.x through 6.1.2 has an out-of-bounds write in QOutlineMapper::convertPath called from QRasterPaintEngine::fill and...
RHEL 6 : qt (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - qt: QPluginLoader loads plugins relative to CWD which could result in arbitrary code execution...
CBL Mariner 2.0 Security Update: qt5-qtbase / qt5-qtsvg (CVE-2021-38593)
The version of qt5-qtbase / qt5-qtsvg installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-38593 advisory. - Qt 5.x before 5.15.6 and 6.x through 6.1.2 has an out-of-bounds write in...
GLSA-202402-03 : QtGui: Multiple Vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202402-03 QtGui: Multiple Vulnerabilities - Qt 5.x before 5.15.6 and 6.x through 6.1.2 has an out-of-bounds write in QOutlineMapper::convertPath called from QRasterPaintEngine::fill and QPaintEngineEx::stroke. CVE-2021-38593 - An...
Rocky Linux 8 : qt5-qtbase (RLSA-2022:1796)
The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:1796 advisory. - Qt 5.x before 5.15.6 and 6.x through 6.1.2 has an out-of-bounds write in QOutlineMapper::convertPath called from QRasterPaintEngine::fill and...
Amazon Linux 2 : qt5-qtbase (ALAS-2023-1967)
The version of qt5-qtbase installed on the remote host is prior to 5.9.2-3. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-1967 advisory. Qt 5.x before 5.15.6 and 6.x through 6.1.2 has an out-of-bounds write in QOutlineMapper::convertPath called from...
Medium: qt5-qtbase
Issue Overview: Qt 5.x before 5.15.6 and 6.x through 6.1.2 has an out-of-bounds write in QOutlineMapper::convertPath called from QRasterPaintEngine::fill and QPaintEngineEx::stroke. CVE-2021-38593 Affected Packages: qt5-qtbase Note: This advisory is applicable to Amazon Linux 2 AL2 Core repositor...
SUSE CVE-2021-38593
Qt 5.x before 5.15.6 and 6.x through 6.1.2 has an out-of-bounds write in QOutlineMapper::convertPath called from QRasterPaintEngine::fill and QPaintEngineEx::stroke...
OESA-2022-2059 qt5-qtbase security update
Qt is a software toolkit for developing applications. This package contains base tools, like string, xml, and network handling. Security Fixes: Qt 5.x before 5.15.6 and 6.x through 6.1.2 has an out-of-bounds write in QOutlineMapper::convertPath called from QRasterPaintEngine::fill and...
Security Bulletin: IBM App Connect Enterprise Certified Container operands may be vulnerable to denial of service due to CVE-2021-38593
Summary Qt is not used directly by IBM App Connect Enterprise Certified Container but is present in the operand images as part of the base operating system. Use of Qt within IBM App Connect Enterprise Certified Container operands may be vulnerable to denial of service. This bulletin provides patc...
Oracle Linux 8 : qt5-qtbase (ELSA-2022-1796)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-1796 advisory. 5.15.2-4 - Fix out-of-bounds write in QOutlineMapper::convertPath Resolves: bz1996877 Tenable has extracted the preceding description block directly from the...
RLSA-2022:1796 Moderate: qt5-qtbase security update
Qt is a software toolkit for developing applications. The qt5-base packages contain base tools for string, xml, and network handling in Qt. Security Fixes: qt: out-of-bounds write in QOutlineMapper::convertPath called from QRasterPaintEngine::fill and QPaintEngineEx::stroke CVE-2021-38593 For mor...
qt5-qtbase security update
An update is available for qt5-qtbase. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Qt is a software toolkit for developing applications. The qt5-base package...
CentOS 8 : qt5-qtbase (CESA-2022:1796)
The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2022:1796 advisory. - qt: out-of-bounds write in QOutlineMapper::convertPath called from QRasterPaintEngine::fill and QPaintEngineEx::stroke CVE-2021-38593 Note that Nessus has not...
CVE-2021-38593 affecting package qt5-qtsvg for versions less than 5.12.11-3
CVE-2021-38593 affecting package qt5-qtsvg for versions less than 5.12.11-3. A patched version of the package is available...
CVE-2021-38593 affecting package qt5-qtsvg 5.12.11-4
CVE-2021-38593 affecting package qt5-qtsvg 5.12.11-4. A patched version of the package is available...
Updated qtbase5 packages fix security vulnerability
It was discovered that Qt incorrectly handled certain XBM image files. If a user or automated system were tricked into opening a specially crafted PPM file, a remote attacker could cause Qt to crash, resulting in a denial of service. CVE-2020-17507 It was discovered that Qt incorrectly handled...
USN-5081-1: Qt vulnerabilities
It was discovered that Qt incorrectly handled certain XBM image files. If a user or automated system were tricked into opening a specially crafted PPM file, a remote attacker could cause Qt to crash, resulting in a denial of service. CVE-2020-17507 It was discovered that Qt incorrectly handled...