RLSA-2026:20567 Important: qt6-qtdeclarative security update

Qt6 - QtDeclarative component. Security Fixes: qt: Qt SVG: Arbitrary QML/JavaScript code injection via malicious SVG file CVE-2025-14576 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE pages listed in...

Important: Red Hat Security Advisory: qt6-qtdeclarative security update

An update for qt6-qtdeclarative is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

[SECURITY] Fedora 44 Update: qt6-qtdeclarative-6.10.3-1.fc44

Qt6 - QtDeclarative component...

[SECURITY] Fedora 44 Update: kf6-kdeclarative-6.25.0-1.fc44

KDE Frameworks 6 Tier 3 addon for Qt declarative...

Amazon Linux 2 : qt5-qtdeclarative, --advisory ALAS2-2025-3101 (ALAS-2025-3101)

The version of qt5-qtdeclarative installed on the remote host is prior to 5.15.3-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-3101 advisory. Allocation of Resources Without Limits or Throttling, Improper Validation of Specified Quantity in Input vulnerability i...

[SECURITY] Fedora 42 Update: qt6-qtdeclarative-6.9.3-2.fc42

Qt6 - QtDeclarative component...

Security advisory: Improper validation of tag size in Text component parser in Qt declarative module impacts Qt

Improper Validation of Specified Quantity in Input vulnerability in Text component parser of the Qt declarative module has been discovered and has been assigned the CVE id CVE-2025-12385 Affected versions: From Qt 5.0.0 to 6.5.10 and from 6.6.0 to 6.8.5 and from 6.9.0 to 6.10.0 Impact: Allocation...

Security advisory: Improper validation of img tag size in Text component parser in Qt declarative module impacts Qt

Improper Validation of Specified Quantity in Input vulnerability in Text component parser of the Qt declarative module has been discovered and has been assigned the CVE id CVE-2025-12385 Affected versions: From Qt 5.0.0 to 6.5.10 and from 6.6.0 to 6.8.5 and from 6.9.0 to 6.10.0 Impact: Allocation...

[SECURITY] Fedora 42 Update: qt5-qtdeclarative-5.15.18-1.fc42

Qt5 - QtDeclarative component...

[SECURITY] Fedora 42 Update: qt6-qtdeclarative-6.9.3-1.fc42

Qt6 - QtDeclarative component...

[SECURITY] Fedora 42 Update: mingw-qt6-qtdeclarative-6.9.3-1.fc42

This package contains the Qt software toolkit for developing cross-platform applications. This is the Windows version of Qt, for use in conjunction with the Fedora Windows cross-compiler...

Important: qt5-qtdeclarative

Issue Overview: An issue was discovered in HTTP2 in Qt before 5.15.18, 6.x before 6.2.13, 6.3.x through 6.5.x before 6.5.7, and 6.6.x through 6.7.x before 6.7.3. Code to make security-relevant decisions about an established connection may execute too early, because the encrypted signal has not ye...

[SECURITY] Fedora 23 Update: kf5-kdeclarative-5.24.0-1.fc23

KDE Frameworks 5 Tier 3 addon for Qt declarative...

[SECURITY] Fedora 24 Update: kf5-kdeclarative-5.24.0-1.fc24

KDE Frameworks 5 Tier 3 addon for Qt declarative...