9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.049 Low
EPSS
Percentile
92.8%
Qt is vulnerable to denial of service(DoS). A buffer overflow flaw was found in the way Qt handled certain gray-scale image files. If a user loaded a specially-crafted gray-scale image file with an application linked against Qt, it could cause the application to crash or, possibly, execute arbitrary code with the privileges of the user running the application.
CPE | Name | Operator | Version |
---|---|---|---|
qt | eq | 4.6.2__19.el6 | |
qt | eq | 4.6.2__17.el6 | |
qt | eq | 4.6.2__16.el6 | |
qt | eq | 4.6.2__17.el6_1.1 |
lists.fedoraproject.org/pipermail/package-announce/2011-September/066209.html
lists.opensuse.org/opensuse-updates/2011-10/msg00007.html
lists.opensuse.org/opensuse-updates/2011-10/msg00008.html
rhn.redhat.com/errata/RHSA-2011-1323.html
rhn.redhat.com/errata/RHSA-2011-1328.html
secunia.com/advisories/46128
secunia.com/advisories/46140
secunia.com/advisories/46187
secunia.com/advisories/46371
secunia.com/advisories/46410
secunia.com/advisories/49383
secunia.com/advisories/49895
security.gentoo.org/glsa/glsa-201206-02.xml
www.openwall.com/lists/oss-security/2011/08/22/6
www.openwall.com/lists/oss-security/2011/08/24/8
www.osvdb.org/75653
www.redhat.com/rhn/rhndetails/fastrack/
www.securityfocus.com/bid/49724
www.ubuntu.com/usn/USN-1504-1
access.redhat.com/errata/RHSA-2011:1328
access.redhat.com/security/updates/classification/#moderate
bugzilla.novell.com/show_bug.cgi?id=637275
exchange.xforce.ibmcloud.com/vulnerabilities/69975
hermes.opensuse.org/messages/12056605
qt.gitorious.org/qt/qt/commit/cb6380beb81ab9571c547270c144988781fed465