Lucene search

Veracode Vulnerability DatabaseVERACODE:24723

HistoryApr 10, 2020 - 1:02 a.m.

Denial Of Service (DoS)

2020-04-1001:02:50

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.049 Low

EPSS

Percentile

92.8%

JSON

Qt is vulnerable to denial of service(DoS). A buffer overflow flaw was found in the way Qt handled certain gray-scale image files. If a user loaded a specially-crafted gray-scale image file with an application linked against Qt, it could cause the application to crash or, possibly, execute arbitrary code with the privileges of the user running the application.

CPENameOperatorVersion
qteq4.6.2__19.el6
qteq4.6.2__17.el6
qteq4.6.2__16.el6
qteq4.6.2__17.el6_1.1

Name	Operator	Version
qt	eq	4.6.2__19.el6
qt	eq	4.6.2__17.el6
qt	eq	4.6.2__16.el6
qt	eq	4.6.2__17.el6_1.1

References

lists.fedoraproject.org/pipermail/package-announce/2011-September/066209.html

lists.opensuse.org/opensuse-updates/2011-10/msg00007.html

lists.opensuse.org/opensuse-updates/2011-10/msg00008.html

rhn.redhat.com/errata/RHSA-2011-1323.html

rhn.redhat.com/errata/RHSA-2011-1328.html

secunia.com/advisories/46128

secunia.com/advisories/46140

secunia.com/advisories/46187

secunia.com/advisories/46371

secunia.com/advisories/46410

secunia.com/advisories/49383

secunia.com/advisories/49895

security.gentoo.org/glsa/glsa-201206-02.xml

www.openwall.com/lists/oss-security/2011/08/22/6

www.openwall.com/lists/oss-security/2011/08/24/8

www.osvdb.org/75653

www.redhat.com/rhn/rhndetails/fastrack/

www.securityfocus.com/bid/49724

www.ubuntu.com/usn/USN-1504-1

access.redhat.com/errata/RHSA-2011:1328

access.redhat.com/security/updates/classification/#moderate

bugzilla.novell.com/show_bug.cgi?id=637275

exchange.xforce.ibmcloud.com/vulnerabilities/69975

hermes.opensuse.org/messages/12056605

qt.gitorious.org/qt/qt/commit/cb6380beb81ab9571c547270c144988781fed465

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.049 Low

EPSS

Percentile

92.8%

JSON

Related for VERACODE:24723