Lucene search
Veracode Vulnerability DatabaseVERACODE:35674HistoryMay 25, 2022 - 12:43 a.m.
Out-of-bounds Write
2022-05-2500:43:05
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
17
0.001 Low
EPSS
Percentile
37.5%
Qt is vulnerable to out-of bound writes. The vulnerability exists in QtPrivate::QCommonArrayOps::growAppend which allows an attacker who is able to submit a crafted image file to an application that uses qsvghandler could cause an out-of-bounds write and potential denial of service.
| CPE | Name | Operator | Version |
|---|---|---|---|
| qt | eq | 4.8.7__3.el7_6 | |
| qt | eq | 4.8.7__8.el7 | |
| qt | eq | 4.6.2__28.el6_5 | |
| qt | eq | 4.6.2__17.el6 | |
| qt | eq | 4.6.2__16.el6 | |
| qt | eq | 4.6.2__17.el6_1.1 | |
| qt | eq | 4.6.2__24.el6 | |
| qt | eq | 4.6.2__20.el6 | |
| qt | eq | 4.6.2__19.el6 | |
| qt | eq | 4.6.2__25.el6 |
Related
nessus
nessus
AlmaLinux 8 : qt5-qtsvg (ALSA-2022:1920)
2022-05-12 00:00:00
CentOS 8 : qt5-qtsvg (CESA-2022:1920)
2022-05-10 00:00:00
RHEL 8 : qt5-qtsvg (RHSA-2022:1920)
2022-05-11 00:00:00
prion
prion
Out-of-bounds
2022-01-01 01:15:00
cvelist
cvelist
CVE-2021-45930
2021-12-31 00:00:00
amazon
amazon
Medium: qt5-qtsvg
2023-03-02 21:50:00
debiancve
debiancve
CVE-2021-45930
2022-01-01 01:15:08
cve
cve
CVE-2021-45930
2022-01-01 01:15:08
ubuntucve
ubuntucve
CVE-2021-45930
2022-01-01 00:00:00
osv
osv
Moderate: qt5-qtsvg security update
2022-05-10 06:38:43
CVE-2021-45930
2022-01-01 01:15:08
qtsvg-opensource-src - security update
2022-01-17 00:00:00
fedora
fedora
[SECURITY] Fedora 35 Update: mingw-qt5-qtsvg-5.15.2-6.fc35
2022-02-07 01:17:19
[SECURITY] Fedora 35 Update: qt5-qtsvg-5.15.2-6.fc35
2022-01-21 16:23:22
[SECURITY] Fedora 34 Update: mingw-qt5-qtsvg-5.15.2-6.fc34
2022-02-06 02:03:00
redhatcve
redhatcve
CVE-2021-45930
2022-01-05 14:11:57
almalinux
almalinux
Moderate: qt5-qtsvg security update
2022-05-10 06:38:43
nvd
nvd
CVE-2021-45930
2022-01-01 01:15:08
rocky
rocky
qt5-qtsvg security update
2022-05-10 00:00:00
oraclelinux
oraclelinux
qt5-qtsvg security update
2022-05-17 00:00:00
openvas
openvas
Fedora: Security Advisory for mingw-qt5-qtsvg (FEDORA-2022-1e29b8997a)
2022-02-07 00:00:00
Fedora: Security Advisory for mingw-qt5-qtsvg (FEDORA-2022-56f583fd79)
2022-02-07 00:00:00
Fedora: Security Advisory for qt5-qtsvg (FEDORA-2022-8e3fbc74e9)
2022-01-22 00:00:00
redhat
redhat
(RHSA-2022:1920) Moderate: qt5-qtsvg security update
2022-05-10 06:38:43
debian
debian
[SECURITY] [DLA 2885-1] qtsvg-opensource-src security update
2022-01-23 20:47:44
[SECURITY] [DLA 2895-1] qt4-x11 security update
2022-01-24 17:33:30
[SECURITY] [DLA 3539-1] qt4-x11 security update
2023-08-22 22:40:50
mageia
mageia
Updated qt4/qtsvg5 packages fix security vulnerability
2023-07-19 22:53:31
gentoo
gentoo
qtsvg: Multiple Vulnerabilities
2024-05-08 00:00:00
ubuntu
ubuntu
QtSvg vulnerabilities
2022-01-19 00:00:00