12 matches found
TencentOS Server 4: qt5-qtbase (TSSA-2025:0509)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0509 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...
OESA-2025-2545 qt5-qtbase security update
Qt is a software toolkit for developing applications. Security Fixes: An issue was found in the private API function qDecodeDataUrl in QtCore, which is used in QTextDocument and QNetworkReply, and, potentially, in user code. If the function was called with malformed data, for example, an URL that...
Security update for libqt5-qtbase
This update for libqt5-qtbase fixes the following issues: Security issues fixed: CVE-2025-5455: processing of malformed data in qDecodeDataUrl can trigger assertion and cause a crash bsc1243958. CVE-2025-30348: complex algorithm used in encodeText in QDom when processing XML data can cause low...
SUSE-SU-2025:03599-1 Security update for qt6-base
This update for qt6-base fixes the following issues: - CVE-2025-5455: processing of malformed data in qDecodeDataUrl can trigger assertion and cause a crash bsc1243958. - CVE-2025-30348: complex algorithm used in encodeText in QDom when processing XML data can cause low performance bsc1239896...
Possible denial of service when passing malformed data in a URL to qDecodeDataUrl
...
MGASA-2025-0212 Updated qtbase6 & qtbase5 packages fix security vulnerability
An issue was found in the private API function qDecodeDataUrl in QtCore, which is used in QTextDocument and QNetworkReply, and, potentially, in user code. If the function was called with malformed data, for example, an URL that contained a "charset" parameter that lacked a value such as...
OESA-2025-1654 qt5-qtbase security update
Qt is a software toolkit for developing applications. Security Fixes: An issue was found in the private API function qDecodeDataUrl in QtCore, which is used in QTextDocument and QNetworkReply, and, potentially, in user code. If the function was called with malformed data, for example, an URL that...
AZL-64349 CVE-2025-5455 affecting package qtbase for versions less than 6.6.3-4
An issue was found in the private API function qDecodeDataUrl in QtCore, which is used in QTextDocument and QNetworkReply, and, potentially, in user code. If the function was called with malformed data, for example, an URL that contained a "charset" parameter that lacked a value such as...
CVE-2025-5455 Possible denial of service when passing malformed data in a URL to qDecodeDataUrl
An issue was found in the private API function qDecodeDataUrl in QtCore, which is used in QTextDocument and QNetworkReply, and, potentially, in user code. If the function was called with malformed data, for example, an URL that contained a "charset" parameter that lacked a value such as...
CVE-2025-5455
The CVE-2025-5455 entry concerns a private API function qDecodeDataUrl() in QtCore used by QTextDocument and QNetworkReply. When called with malformed data (e.g., a data: URL with a charset parameter lacking a value) and with assertions enabled, it can trigger an assertion and abort, causing a de...
CVE-2025-5455 Possible denial of service when passing malformed data in a URL to qDecodeDataUrl
An issue was found in the private API function qDecodeDataUrl in QtCore, which is used in QTextDocument and QNetworkReply, and, potentially, in user code. If the function was called with malformed data, for example, an URL that contained a "charset" parameter that lacked a value such as...
CVE-2025-5455
An issue was found in the private API function qDecodeDataUrl in QtCore, which is used in QTextDocument and QNetworkReply, and, potentially, in user code. If the function was called with malformed data, for example, an URL that contained a "charset" parameter that lacked a value such as...