EUVD-2007-4121

Malware in sbrugna...

SuSE9 Security Update : qt3 (YOU Patch Number 11795)

An off-by-one error in the QUtf8Decoder::toUnicode method has been found which may allow a denial of service attack with specially crafted UTF-8 character sequences that trigger a buffer overflow. CVE-2007-4137 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plug...

Heap overflow

Off-by-one error in the QUtf8Decoder::toUnicode function in Trolltech Qt 3 allows context-dependent attackers to cause a denial of service crash via a crafted Unicode string that triggers a heap-based buffer overflow. NOTE: Qt 4 has the same error in the QUtf8Codec::convertToUnicode function, but...

CVE-2007-4137

The CVE-2007-4137 issue is an off-by-one error in the QUtf8Decoder::toUnicode function in Trolltech Qt 3, causing a heap-based buffer overflow that can lead to a denial of service via a crafted Unicode string. Qt 4 reportedly has a similar error in QUtf8Codec::convertToUnicode, but it is not expl...

CVE-2007-4137

Off-by-one error in the QUtf8Decoder::toUnicode function in Trolltech Qt 3 allows context-dependent attackers to cause a denial of service crash via a crafted Unicode string that triggers a heap-based buffer overflow. NOTE: Qt 4 has the same error in the QUtf8Codec::convertToUnicode function, but...