17 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-21035
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Qt through 5.14.1, the WebSocket implementation accepts up to 2GB for frames and 2GB for messages. Smaller limits cannot be configured. This makes it easier...
RHEL 7 : qt5-qtwebsockets (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - qt5-qtwebsockets: websocket implementation allows only limited size for frames and messages therefore attacker can...
SUSE CVE-2018-21035
In Qt through 5.14.1, the WebSocket implementation accepts up to 2GB for frames and 2GB for messages. Smaller limits cannot be configured. This makes it easier for attackers to cause a denial of service memory consumption...
CVE-2018-21035 affecting package qt5-qtsvg for versions less than 5.12.11-3
CVE-2018-21035 affecting package qt5-qtsvg for versions less than 5.12.11-3. A patched version of the package is available...
AlmaLinux 8 : qt5-qtbase and qt5-qtwebsockets (ALSA-2020:4690)
The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2020:4690 advisory. - Qt through 5.14 allows an exponential XML entity expansion attack via a crafted SVG document that is mishandled in QXmlStreamReader, a related issue to...
CVE-2018-21035 affecting package qt5-qtsvg 5.12.11-4
CVE-2018-21035 affecting package qt5-qtsvg 5.12.11-4. A patched version of the package is available...
Advisory ROSA-SA-2021-1959
Software: qt 4.8.7 OS: Cobalt 7.9 CVE-ID: CVE-2014-0190 CVE-Crit: HIGH CVE-DESC: The GIF decoder in QtGui in Qt before version 5.3 allows remote attackers to cause a denial of service dereferencing a NULL pointer via invalid width and height values in a GIF image. CVE-STATUS: default CVE-REV:...
MGASA-2021-0270 Updated qtwebsockets5 packages fix a security vulnerability
In Qt through 5.14.1, the WebSocket implementation accepts up to 2GB for frames and 2GB for messages. Smaller limits cannot be configured. This makes it easier for attackers to cause a denial of service memory consumption CVE-2018-21035...
Updated qtwebsockets5 packages fix a security vulnerability
In Qt through 5.14.1, the WebSocket implementation accepts up to 2GB for frames and 2GB for messages. Smaller limits cannot be configured. This makes it easier for attackers to cause a denial of service memory consumption CVE-2018-21035...
NewStart CGSL MAIN 6.02 : qt5-qtwebsockets Vulnerability (NS-SA-2021-0085)
The remote NewStart CGSL host, running version MAIN 6.02, has qt5-qtwebsockets packages installed that are affected by a vulnerability: - In Qt through 5.14.1, the WebSocket implementation accepts up to 2GB for frames and 2GB for messages. Smaller limits cannot be configured. This makes it easier...
RHEL 8 : qt5-qtbase and qt5-qtwebsockets (RHSA-2020:4690)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4690 advisory. Qt is a software toolkit for developing applications. The qt5-base packages contain base tools for string, xml, and network handling in Qt...
Moderate: qt5-qtbase and qt5-qtwebsockets security and bug fix update
Qt is a software toolkit for developing applications. The qt5-base packages contain base tools for string, xml, and network handling in Qt. Security Fixes: qt: XML entity expansion vulnerability CVE-2015-9541 qt5-qtwebsockets: websocket implementation allows only limited size for frames and...
qt5-qtbase and qt5-qtwebsockets security and bug fix update
An update is available for qt5-qtwebsockets. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Qt is a software toolkit for developing applications. The qt5-base...
CVE-2018-21035
In Qt through 5.14.1, the WebSocket implementation accepts up to 2GB for frames and 2GB for messages. Smaller limits cannot be configured. This makes it easier for attackers to cause a denial of service memory consumption...
CVE-2018-21035
creationtimestamp| type| source ---|---|--- 2020-02-29 00:33:10+00:00| seen| https://t.me/cibsecurity/10191...
CVE-2018-21035
In Qt through 5.14.1, the WebSocket implementation accepts up to 2GB for frames and 2GB for messages. Smaller limits cannot be configured. This makes it easier for attackers to cause a denial of service memory consumption...
CVE-2018-21035
CVE-2018-21035 affects Qt’s WebSocket implementation in Qt up to 5.14.1, where frames and messages are limited to 2 GB and this limit cannot be configured, enabling potential memory-based DoS. The vulnerability is documented across multiple advisories (e.g., MiracleLinux, Rocky Linux, AlmaLinux, ...