OESA-2026-2507 qt6-qtbase security update

Qt is a software toolkit for developing applications. Security Fixes: An Uncontrolled Search Path Element vulnerability in the OpenSSL TLS backend of Qt Network qtbase in Qt Qt Framework Unix allows a local attacker to load a rogue CA certificate as a trusted system authority via a crafted...

Astra Linux - уязвимость в qtbase-opensource-src

A issue was discovered in gui/util/qktxhandler.cpp in Qt before 5.15.17, 6.x before 6.2.12, 6.3.x through 6.5.x before 6.5.5, and 6.6.x before 6.6.2. A buffer overflow and application crash can occur due to a crafted KTX image file...

[SECURITY] Fedora 44 Update: qt6-qtbase-6.10.3-1.fc44

Qt is a software toolkit for developing applications. This package contains base tools, like string, xml, and network handling...

Ubuntu: Security Advisory (USN-8076-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

AZL-79460 CVE-2026-3381 affecting package qtbase 6.6.3-4

Compress::Raw::Zlib versions through 2.219 for Perl use potentially insecure versions of zlib. Compress::Raw::Zlib includes a copy of the zlib library. Compress::Raw::Zlib version 2.220 includes zlib 1.3.2, which addresses findings fron the 7ASecurity audit of zlib. The includes fixs for...

Azure Linux 3.0 Security Update: harfbuzz / qtbase (CVE-2024-56732)

The version of harfbuzz / qtbase installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-56732 advisory. - HarfBuzz is a text shaping engine. Starting with 8.5.0 through 10.0.1, there is a heap-based buff...

MiracleLinux 7 : qt5-qtbase-5.9.7-4.el7 (AXSA:2020-694:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-694:01 advisory. qt: files placed by attacker can influence the working directory and lead to malicious code execution CVE-2020-0569 qt: files placed by attacker can...

MiracleLinux 8 : qt5-qtbase-5.15.3-7.el8 (AXSA:2024-8364:02)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8364:02 advisory. qt: incorrect integer overflow check CVE-2023-51714 qtbase: potential buffer overflow when reading KTX images CVE-2024-25580 Tenable has extracted t...

MiracleLinux 9 : qt5-qtbase-5.15.9-11.el9_6 (AXSA:2025-10594:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10594:01 advisory. qt5: qt6: QtCore Assertion Failure Denial of Service CVE-2025-5455 Tenable has extracted the preceding description block directly from the MiracleLinux...

CVE-2025-66293 affecting package qt5-qtbase for versions less than 5.12.11-19

CVE-2025-66293 affecting package qt5-qtbase for versions less than 5.12.11-19. A patched version of the package is available...

ROS-20251216-7314

Vulnerability in qt6-qtbase related to buffer overflow in dynamic memory. Exploitation of the vulnerability may allow a remote attacker to execute arbitrary code...

ROS-20251215-7311

Vulnerability in qt6-qtbase related to algorithmic complexity. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

Ubuntu: Security Advisory (USN-7923-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-7923-1 qtbase-opensource-src vulnerability

It was discovered that Qt did not correctly handle certain memory operations. If a user or automated system were tricked into opening a specially crafted file, an attacker could possibly use this issue to cause a denial of service or execute arbitrary code...

AZL-71644 CVE-2025-66293 affecting package qt5-qtbase for versions less than 5.12.11-19

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. Prior to 1.6.52, an out-of-bounds read vulnerability in libpng's simplified API allows reading up to 1012 bytes beyond the pngsRGBbase512 array when processing...

Debian dla-4387 : libqt5concurrent5 - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4387 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4387-1 [email protected] https://www.debian.org/lts/security/...

Debian: Security Advisory (DLA-4387-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

DLA-4387-1 qtbase-opensource-src - security update

Bulletin has no description...

[SECURITY] Fedora 42 Update: qt5-qtbase-5.15.18-1.fc42

Qt is a software toolkit for developing applications. This package contains base tools, like string, xml, and network handling...

Fedora: Security Advisory (FEDORA-2025-9a46af550f)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...