[SECURITY] Fedora 42 Update: qt6-qtquick3dphysics-6.9.1-1.fc42

The Qt 6 Quick3D Physics library...

[SECURITY] Fedora 42 Update: qt6-qt3d-6.9.1-1.fc42

Qt 3D provides functionality for near-realtime simulation systems with support for 2D and 3D rendering in both Qt C++ and Qt Quick applications...

K000148809: Qt vulnerabilities CVE-2023-38197 and CVE-2023-37369

Security Advisory Description CVE-2023-38197 An issue was discovered in Qt before 5.15.15, 6.x before 6.2.10, and 6.3.x through 6.5.x before 6.5.3. There are infinite loops in recursive entity expansion. CVE-2023-37369 In Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.2,...

[SECURITY] Fedora 40 Update: qt6-qtbase-6.7.2-3.fc40

Qt is a software toolkit for developing applications. This package contains base tools, like string, xml, and network handling...

Fedora: Security Advisory for gammaray (FEDORA-2024-2e27372d4c)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 40 Update: qt6-qtquick3d-6.7.1-1.fc40

The Qt 6 Quick3D library...

[SECURITY] Fedora 40 Update: qt6-qtquick3dphysics-6.7.1-1.fc40

The Qt 6 Quick3D Physics library...

[SECURITY] Fedora 40 Update: qt6-qtgraphs-6.7.1-1.fc40

The Qt Graphs module enables you to visualize data in 3D as bar, scatter, and surface graphs. It's especially useful for visualizing depth maps and large quantities of rapidly changing data, such as data received from multiple sensors. The look and feel of graphs can be customized by using themes...

CVE-2023-45935

Qt 6 through 6.6 was discovered to contain a NULL pointer dereference via the function QXcbConnection::initializeAllAtoms. NOTE: this is disputed because it is not expected that an X application should continue to run when there is arbitrary anomalous behavior from the X server...

CVE-2023-45935

Qt 6.x (Qt 6 through 6.6) is affected by a NULL pointer dereference in QXcbConnection::initializeAllAtoms(), which can impact availability. This aligns with Red Hat/SUSE advisories: fixes are provided in the SUSE/SUSE-SU-2024:2946-1 family and related advisories, and OSV records list CVE-2023-459...

QtNetwork: Multiple Vulnerabilities

Background QtNetwork provides a set of APIs for programming applications that use TCP/IP. It is part of the Qt framework. Description Multiple vulnerabilities have been discovered in QtNetwork. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE...

GLSA-202402-03 : QtGui: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202402-03 QtGui: Multiple Vulnerabilities - Qt 5.x before 5.15.6 and 6.x through 6.1.2 has an out-of-bounds write in QOutlineMapper::convertPath called from QRasterPaintEngine::fill and QPaintEngineEx::stroke. CVE-2021-38593 - An...

Rocky Linux 8 : qt5-qtbase (RLSA-2022:1796)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:1796 advisory. - Qt 5.x before 5.15.6 and 6.x through 6.1.2 has an out-of-bounds write in QOutlineMapper::convertPath called from QRasterPaintEngine::fill and...

Medium: qt5-qtbase

Issue Overview: Qt 5.x before 5.15.6 and 6.x through 6.1.2 has an out-of-bounds write in QOutlineMapper::convertPath called from QRasterPaintEngine::fill and QPaintEngineEx::stroke. CVE-2021-38593 Affected Packages: qt5-qtbase Note: This advisory is applicable to Amazon Linux 2 AL2 Core repositor...

PT-2022-6843

Name of the Vulnerable Software and Affected Versions Qt versions 5.15.8 and earlier Qt versions 6.x through 6.2.3 Description The issue is related to the LoadLibrary function in the Qt cross-platform framework, which can be exploited to bypass directory restrictions. This could allow a remote...

CVE-2022-25255

In Qt 5.9.x through 5.15.x before 5.15.9 and 6.x before 6.2.4 on Linux and UNIX, QProcess could execute a binary from the current working directory when not found in the PATH...