34 matches found
OSV-2025-906 Use-of-uninitialized-value in QImage::pixel
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=461199967 Crash type: Use-of-uninitialized-value Crash state: QImage::pixel XCFImageFormat::copyGrayAToRGB XCFImageFormat::copyLayerToImage...
OESA-2025-2581 qt5-qtimageformats security update
The core Qt Gui library by default supports reading and writing image files of the most common file formats: PNG, JPEG, BMP, GIF and a few more, ref. Reading and Writing Image Files. The Qt Image Formats add-on module provides optional support for other image file formats. Security Fixes: When...
OESA-2025-2495 qt5-qtimageformats security update
The core Qt Gui library by default supports reading and writing image files of the most common file formats: PNG, JPEG, BMP, GIF and a few more, ref. Reading and Writing Image Files. The Qt Image Formats add-on module provides optional support for other image file formats. Security Fixes: When...
OESA-2025-2493 qt5-qtimageformats security update
The core Qt Gui library by default supports reading and writing image files of the most common file formats: PNG, JPEG, BMP, GIF and a few more, ref. Reading and Writing Image Files. The Qt Image Formats add-on module provides optional support for other image file formats. Security Fixes: When...
EUVD-2025-16968
Malicious code in bioql PyPI...
MGASA-2025-0208 Updated qtimageformats6 packages fix security vulnerabilities
Loading a specifically-crafted ICNS format image file in QImage will trigger a crash. This issue affects Qt from versions 6.3.0 through 6.5.9, from 6.6.0 through 6.8.4, 6.9.0...
Updated qtimageformats6 packages fix security vulnerabilities
Loading a specifically-crafted ICNS format image file in QImage will trigger a crash. This issue affects Qt from versions 6.3.0 through 6.5.9, from 6.6.0 through 6.8.4, 6.9.0...
OESA-2025-1709 qt6-qtimageformats security update
Security Fixes: When loading a specifically crafted ICNS format image file in QImage then it will trigger a crash. This issue affects Qt from versions 6.3.0 through 6.5.9, from 6.6.0 through 6.8.4, 6.9.0. This is fixed in 6.5.10, 6.8.5 and 6.9.1.CVE-2025-5683...
OESA-2025-1708 qt6-qtimageformats security update
Security Fixes: When loading a specifically crafted ICNS format image file in QImage then it will trigger a crash. This issue affects Qt from versions 6.3.0 through 6.5.9, from 6.6.0 through 6.8.4, 6.9.0. This is fixed in 6.5.10, 6.8.5 and 6.9.1.CVE-2025-5683...
CVE-2025-5683
A flaw was found in qt. Loading a specially crafted ICNS image file within QImage results in a crash. This flaw allows a local attacker to provide a malicious image. The vulnerability is exploited via the image loading process, leading to application termination. Mitigation Mitigation for this...
SUSE CVE-2025-5683
When loading a specifically crafted ICNS format image file in QImage then it will trigger a crash. This issue affects Qt from versions 6.3.0 through 6.5.9, from 6.6.0 through 6.8.4, 6.9.0. This is fixed in 6.5.10, 6.8.5 and 6.9.1...
DEBIAN-CVE-2025-5683
When loading a specifically crafted ICNS format image file in QImage then it will trigger a crash. This issue affects Qt from versions 6.3.0 through 6.5.9, from 6.6.0 through 6.8.4, 6.9.0. This is fixed in 6.5.10, 6.8.5 and 6.9.1...
CVE-2025-5683
When loading a specifically crafted ICNS format image file in QImage then it will trigger a crash. This issue affects Qt from versions 6.3.0 through 6.5.9, from 6.6.0 through 6.8.4, 6.9.0. This is fixed in 6.5.10, 6.8.5 and 6.9.1...
UBUNTU-CVE-2025-5683
When loading a specifically crafted ICNS format image file in QImage then it will trigger a crash. This issue affects Qt from versions 6.3.0 through 6.5.9, from 6.6.0 through 6.8.4, 6.9.0. This is fixed in 6.5.10, 6.8.5 and 6.9.1...
CVE-2025-5683
When loading a specifically crafted ICNS format image file in QImage then it will trigger a crash. This issue affects Qt from versions 6.3.0 through 6.5.9, from 6.6.0 through 6.8.4, 6.9.0. This is fixed in 6.5.10, 6.8.5 and 6.9.1...
CVE-2025-5683
When loading a specifically crafted ICNS format image file in QImage then it will trigger a crash. This issue affects Qt from versions 6.3.0 through 6.5.9, from 6.6.0 through 6.8.4, 6.9.0. This is fixed in 6.5.10, 6.8.5 and 6.9.1...
CVE-2025-5683
CVE-2025-5683 : A vulnerability in Qt image loading (qtimageformats) exists when parsing ICNS image files in QImage, leading to a crash. The issue affects Qt 6.3.0–6.5.9, 6.6.0–6.8.4, and 6.9.0. A fixed patch is available in Qt releases 6.5.10, 6.8.5, and 6.9.1. The connected security advisory/ N...
PT-2025-23897 · Qt Company +1 · Qt +1
Name of the Vulnerable Software and Affected Versions: Qt versions 6.3.0 through 6.5.9 Qt versions 6.6.0 through 6.8.4 Qt version 6.9.0 Description: The issue occurs when a specifically crafted ICNS format image file is loaded in QImage, triggering a crash. Recommendations: For Qt versions 6.3.0...
OSV-2020-2086 Bad-cast to QPaintDevice from invalid vptr
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=26457 Crash type: Bad-cast Crash state: Bad-cast to QPaintDevice from invalid vptr QImage::operator= XCFImageFormat::readXCF...
SQL Injection Vulnerability in Qimage's Website Management System (Wim)
Hefei Qimai Network Technology Co., Ltd. specializes in website construction, website optimization, web hosting, domain name registration and other network services. A SQL injection vulnerability exists in Qimage's website management system Wim. Attackers can utilize this vulnerability to obtain...