31 matches found
EUVD-2020-4580
Malware in sbrugna...
EUVD-2018-11546
Malware in sbrugna...
EUVD-2007-0244
Malware in sbrugna...
EUVD-2013-5537
Malware in sbrugna...
EUVD-2012-5963
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2022-43591
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A buffer overflow vulnerability exists in the QML QtScript Reflect API of Qt Project Qt 6.3.2. A specially-crafted javascript code can trigger an out-of-bounds...
CVE-2025-5992
Qt evolves a DoS issue: passing values outside the expected range to QColorTransferGenericFunction can be triggered by a crafted ICC profile used with QColorSpace::fromICCProfile. Affected releases are Qt 6.6.0–6.8.3 and 6.9.0–6.9.1. The vulnerability is fixed in Qt 6.8.4 and 6.9.2. Impact is des...
Security advisory: Recently reported incomplete cleanup issue in Qt's Schannel handling can impact Qt
There is a "Incomplete Cleanup" problem in Qt’s Schannel handling when it is used to provide a server handling incoming TLS connections. This has been assigned the CVE id CVE-2025-6338. Affected versions: This issue affects only the Schannel functionality on Windows if it is turned on in Qt 5.15...
CVE-2025-5991 Use after free in QHttp2ProtocolHandler
There is a "Use After Free" vulnerability in Qt's QHttp2ProtocolHandler in the QtNetwork module. This only affects HTTP/2 handling, HTTP handling is not affected by this at all. This happens due to a race condition between how QHttp2Stream uploads the body of a POST request and the simultaneous...
Qt 资源管理错误漏洞
Qt is a cross-platform application development framework from the Qt open source. A resource management error vulnerability exists in Qt version 6.9.0, which stems from reuse after release and could lead to a race condition...
CVE-2025-30348
encodeText in QDom in Qt before 6.8.0 has a complex algorithm involving XML string copy and inline replacement of parts of a string with relocation of later data...
CVE-2025-30348
encodeText in QDom in Qt before 6.8.0 has a complex algorithm involving XML string copy and inline replacement of parts of a string with relocation of later data...
CVE-2025-30348
encodeText in QDom in Qt before 6.8.0 has a complex algorithm involving XML string copy and inline replacement of parts of a string with relocation of later data...
Important: qt5-qtlocation
Issue Overview: An issue was discovered in HTTP2 in Qt before 5.15.18, 6.x before 6.2.13, 6.3.x through 6.5.x before 6.5.7, and 6.6.x through 6.7.x before 6.7.3. Code to make security-relevant decisions about an established connection may execute too early, because the encrypted signal has not ye...
Important: qt5-qtxmlpatterns
Issue Overview: An issue was discovered in HTTP2 in Qt before 5.15.18, 6.x before 6.2.13, 6.3.x through 6.5.x before 6.5.7, and 6.6.x through 6.7.x before 6.7.3. Code to make security-relevant decisions about an established connection may execute too early, because the encrypted signal has not ye...
AZL-26943 CVE-2023-33285 affecting package qt5-qtbase for versions less than 5.12.11-9
An issue was discovered in Qt 5.x before 5.15.14, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.1. QDnsLookup has a buffer over-read via a crafted reply from a DNS server...
CVE-2023-32573
In Qt before 5.15.14, 6.0.x through 6.2.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.1, QtSvg QSvgFont munitsPerEm initialization is mishandled...
SUSE CVE-2018-19869
An issue was discovered in Qt before 5.11.3. A malformed SVG image causes a segmentation fault in qsvghandler.cpp...
Denial Of Service (DoS)
Qt 5.x before 5.15.6 and 6.x through 6.1.2 has an out-of-bounds write in QOutlineMapper::convertPath called from QRasterPaintEngine::fill and QPaintEngineEx::stroke...
Qt allows for privilege escalation due to hard-coding of qt_prfxpath value
Overview Prior to version 5.14, Qt hard-codes the qtprfxpath value to a fixed value, which may lead to privilege escalation vulnerabilities in Windows software that uses Qt. Description Prior to version 5.14, Qt hard-codes the qtprfxpath value to a value that reflects the path where Qt exists on...