Lucene search
K

3054 matches found

Fedora
Fedora
added 3 days ago7 views

[SECURITY] Fedora 44 Update: python-pillow-12.3.0-1.fc44

Python image processing library, fork of the Python Imaging Library PIL This library provides extensive file format support, an efficient internal representation, and powerful image processing capabilities. There are four subpackages: tk tk interface, qt PIL image wrapper for Qt, devel developmen...

7.5CVSS6.1AI score0.00364EPSS
Exploits5
OSV
OSV
added 2026/07/06 6:27 a.m.4 views

OESA-2026-2842 qt5-qtbase security update

This package provides base tools, such as string, xml, and network handling. Security Fixes: An issue was discovered in HTTP2 in Qt before 5.15.18, 6.x before 6.2.13, 6.3.x through 6.5.x before 6.5.7, and 6.6.x through 6.7.x before 6.7.3. Code to make security-relevant decisions about an...

8.6CVSS6AI score0.00494EPSS
Exploits0References2
OSV
OSV
added 2026/07/06 6:27 a.m.4 views

OESA-2026-2841 qt5-qtbase security update

This package provides base tools, such as string, xml, and network handling. Security Fixes: An issue was discovered in HTTP2 in Qt before 5.15.18, 6.x before 6.2.13, 6.3.x through 6.5.x before 6.5.7, and 6.6.x through 6.7.x before 6.7.3. Code to make security-relevant decisions about an...

8.6CVSS6AI score0.00494EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.14 views

Astra Linux – Vulnerability in qtimageformats-opensource-src

When loading a specially crafted ICNS format image file in QImage, it will cause a crash. This issue affects Qt versions 6.3.0 through 6.5.9, 6.6.0 through 6.8.4, and 6.9.0. This issue has been fixed in versions 6.5.10, 6.8.5, and 6.9.1...

5.5CVSS5.7AI score0.00203EPSS
Exploits0References3
OSV
OSV
added 2026/06/22 12:0 a.m.4 views

OPENSUSE-SU-2026:11073-1 bitcoin-qt6-31.0-2.1 on GA media

These are all security issues fixed in the bitcoin-qt6-31.0-2.1 package on the GA media of openSUSE Tumbleweed...

7.5CVSS6.4AI score0.03389EPSS
Exploits1References5
CVE
CVE
added 2026/06/18 11:37 p.m.67 views

CVE-2026-12044

CVE-2026-12044 affects pgAdmin 4. An authenticated user with permission to create/alter objects can inject SQL via the description field in templates rendering COMMENT ON ... IS ''. The vulnerability stems from Jinja templates interpolating user-supplied descriptions directly into single-quoted S...

8.8CVSS6AI score0.00489EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/06/11 12:0 a.m.11 views

Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS : Qt Declarative vulnerability (USN-8357-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-8357-1 advisory. It was discovered that Qt Declarative did not properly validate the width and height attributes of image tags in the Text component of Qt...

8.7CVSS5.6AI score0.00273EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/06/11 12:0 a.m.8 views

RHEL 10 : qt6-qtdeclarative (RHSA-2026:24987)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:24987 advisory. Qt6 - QtDeclarative component. Security Fixes: qt: Qt SVG: Arbitrary QML/JavaScript code injection via malicious SVG file CVE-2025-14576 For more...

9.3CVSS5.7AI score0.00224EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/06/10 7:9 a.m.16 views

Important: Red Hat Security Advisory: qt6-qtdeclarative security update

An update for qt6-qtdeclarative is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

9.3CVSS5.6AI score0.00224EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/06/10 7:9 a.m.18 views

qt: Qt SVG: Arbitrary QML/JavaScript code injection via malicious SVG file

A flaw was found in the Qt SVG module and the VectorImage component in Qt Quick. This vulnerability allows a remote attacker to inject arbitrary QML/JavaScript code by tricking a user into loading a specially crafted malicious SVG file. Successful exploitation could lead to denial of service,...

9.3CVSS5.7AI score0.00224EPSS
Exploits0References5
Rockylinux
Rockylinux
added 2026/06/04 12:4 p.m.17 views

qt6-qtdeclarative security update

An update is available for qt6-qtdeclarative. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Qt6 - QtDeclarative component. Security Fixes: qt: Qt SVG: Arbitra...

9.3CVSS5.9AI score0.00224EPSS
Exploits0
OSV
OSV
added 2026/06/04 12:4 p.m.12 views

RLSA-2026:20567 Important: qt6-qtdeclarative security update

Qt6 - QtDeclarative component. Security Fixes: qt: Qt SVG: Arbitrary QML/JavaScript code injection via malicious SVG file CVE-2025-14576 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE pages listed in...

7.8CVSS5.9AI score0.00224EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/06/04 12:0 a.m.13 views

RockyLinux 10 : qt6-qtdeclarative (RLSA-2026:20567)

The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:20567 advisory. qt: Qt SVG: Arbitrary QML/JavaScript code injection via malicious SVG file CVE-2025-14576 Tenable has extracted the preceding description block directly from th...

9.3CVSS5.9AI score0.00224EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/01 12:0 a.m.15 views

Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 26.04 LTS : QT WebEngine vulnerability (USN-8347-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 26.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-8347-1 advisory. It was discovered that the vendored LibTIFF in QT WebEngine incorrectly handled memory when parsing malformed TIFF...

8.8CVSS6.1AI score0.00739EPSS
Exploits0References2
OSV
OSV
added 2026/05/29 1:35 p.m.13 views

OESA-2026-2508 qt6-qtbase security update

Qt is a software toolkit for developing applications. Security Fixes: An Uncontrolled Search Path Element vulnerability in the OpenSSL TLS backend of Qt Network qtbase in Qt Qt Framework Unix allows a local attacker to load a rogue CA certificate as a trusted system authority via a crafted...

1.8CVSS5.8AI score0.0009EPSS
Exploits0References2
OSV
OSV
added 2026/05/29 1:35 p.m.16 views

OESA-2026-2506 qt6-qtbase security update

Qt is a software toolkit for developing applications. Security Fixes: An Uncontrolled Search Path Element vulnerability in the OpenSSL TLS backend of Qt Network qtbase in Qt Qt Framework Unix allows a local attacker to load a rogue CA certificate as a trusted system authority via a crafted...

1.8CVSS5.8AI score0.0009EPSS
Exploits0References2
OSV
OSV
added 2026/05/29 1:33 p.m.14 views

OESA-2026-2470 qt5-qtbase security update

Qt is a software toolkit for developing applications. Security Fixes: An Uncontrolled Search Path Element vulnerability in the OpenSSL TLS backend of Qt Network qtbase in Qt Qt Framework Unix allows a local attacker to load a rogue CA certificate as a trusted system authority via a crafted...

1.8CVSS5.8AI score0.0009EPSS
Exploits0References2
OSV
OSV
added 2026/05/29 1:33 p.m.15 views

OESA-2026-2468 qt5-qtbase security update

Qt is a software toolkit for developing applications. Security Fixes: An Uncontrolled Search Path Element vulnerability in the OpenSSL TLS backend of Qt Network qtbase in Qt Qt Framework Unix allows a local attacker to load a rogue CA certificate as a trusted system authority via a crafted...

1.8CVSS5.8AI score0.0009EPSS
Exploits0References2
OSV
OSV
added 2026/05/29 1:33 p.m.15 views

OESA-2026-2469 qt5-qtbase security update

Qt is a software toolkit for developing applications. Security Fixes: An Uncontrolled Search Path Element vulnerability in the OpenSSL TLS backend of Qt Network qtbase in Qt Qt Framework Unix allows a local attacker to load a rogue CA certificate as a trusted system authority via a crafted...

1.8CVSS5.8AI score0.0009EPSS
Exploits0References2
Fedora
Fedora
added 2026/05/29 1:27 a.m.16 views

[SECURITY] Fedora 43 Update: mingw-qt6-qtsvg-6.10.3-2.fc43

This package contains the Qt software toolkit for developing cross-platform applications. This is the Windows version of Qt, for use in conjunction with the Fedora Windows cross-compiler...

8.7CVSS5.6AI score0.00279EPSS
Exploits0
Rows per page
Query Builder