Oracle Linux 8 : qt5-qtbase (ELSA-2019-3390)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2019-3390 advisory. qt5-qtbase 5.11-1-7 - Move libQt5EglFSDeviceIntegration lib out of the -devel subpkg Resolves: bz1692970 - Fix QImage allocaion failure Resolve:...

NewStart CGSL CORE 5.05 / MAIN 5.05 : qt5-qtx11extras Multiple Vulnerabilities (NS-SA-2023-0023)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has qt5-qtx11extras packages installed that are affected by multiple vulnerabilities: - QXmlStream in Qt 5.x before 5.11.3 has a double-free or corruption during parsing of a specially crafted illegal XML document. CVE-2018-155...

SUSE CVE-2015-1858

Multiple buffer overflows in gui/image/qbmphandler.cpp in the QtBase module in Qt before 4.8.7 and 5.x before 5.4.2 allow remote attackers to cause a denial of service segmentation fault and crash and possibly execute arbitrary code via a crafted BMP image...

Mageia: Security Advisory (MGASA-2019-0025)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2018:4183-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security update for libqt4 (moderate)

openSUSE Security Update: Security update for libqt4 Announcement ID: openSUSE-SU-2020:1530-1 Rating: moderate References: 1118595 1118596 1118599 1121214 1176315 Cross-References: CVE-2018-15518 CVE-2018-19869 CVE-2018-19873 CVE-2020-17507 Affected Products: openSUSE Backports SLE-15-SP2 An upda...

openSUSE: Security Advisory for libqt4 (openSUSE-SU-2020:1501-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Security update for libqt4 (moderate)

openSUSE Security Update: Security update for libqt4 Announcement ID: openSUSE-SU-2020:1452-1 Rating: moderate References: 1118595 1118596 1118599 1121214 1176315 Cross-References: CVE-2018-15518 CVE-2018-19869 CVE-2018-19873 CVE-2020-17507 Affected Products: openSUSE Leap 15.1 An update that...

Scientific Linux Security Update : qt on SL7.x x86_64 (20200407)

qt5-qtbase: Double free in QXmlStreamReader qt: Malformed PPM image causing division by zero and crash in qppmhandler.cpp qt5-qtsvg: Invalid parsing of malformed url reference resulting in a denial of service qt5-qtbase: QImage allocation failure in qgifhandler qt5-qtimageformats: QTgaFile CPU...

Huawei EulerOS: Security Advisory for qt (EulerOS-SA-2019-1103)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for qt (EulerOS-SA-2019-1042)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2018-19873

An issue was discovered in Qt before 5.11.3. QBmpHandler has a buffer overflow via BMP data...

NewStart CGSL CORE 5.04 / MAIN 5.04 : qt5-qtbase Multiple Vulnerabilities (NS-SA-2019-0217)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has qt5-qtbase packages installed that are affected by multiple vulnerabilities: - An issue was discovered in Qt before 5.11.3. A malformed GIF image causes a NULL pointer dereference in QGifHandler resulting in a segmentation...

Arbitrary Code Execution

qt5-qtbase is vulnerable to arbitrary code execution. A segmentation fault in the QBmpHandler caused by a malicious BMP file allows arbitrary code execution in the system...

SUSE SLED15 / SLES15 Security Update : libqt5-qtbase (SUSE-SU-2019:0447-1)

This update for libqt5-qtbase provides the following fixes : Security issues fixed : CVE-2018-15518: Fixed double free in QXmlStreamReader bsc1118595 CVE-2018-19873: Fixed Denial of Service on malformed BMP file in QBmpHandler bsc1118596 Non-security issues fixed: Fix dynamic loading of libGL...

MGASA-2019-0025 Updated qtbase5 packages fix security vulnerabilities

Double free in QXmlStreamReader CVE-2018-15518. Denial of Service on malformed BMP file in QBmpHandler CVE-2018-19873...

Updated qtbase5 packages fix security vulnerabilities

Double free in QXmlStreamReader CVE-2018-15518. Denial of Service on malformed BMP file in QBmpHandler CVE-2018-19873...

Buffer overflow

An issue was discovered in Qt before 5.11.3. QBmpHandler has a buffer overflow via BMP data...

CVE-2018-19873

CVE-2018-19873 affects Qt up to version 5.11.2 (before 5.11.3): QBmpHandler can overflow a buffer when processing BMP data, leading to a potentially exploitable crash or arbitrary code execution as implied by the CVE entry. Public mentions across advisories (e.g., F5 K08037765, K42941419, Debian/...

CVE-2018-19873

An issue was discovered in Qt before 5.11.3. QBmpHandler has a buffer overflow via BMP data...