Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2023-32763

Опубликовано: 28 мая 2023
Источник: debian
EPSS Низкий

Описание

An issue was discovered in Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.1. When a SVG file with an image inside it is rendered, a QTextLayout buffer overflow can be triggered.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
qt6-basefixed6.4.2+dfsg-8package
qtbase-opensource-srcfixed5.15.8+dfsg-10package
qtbase-opensource-srcfixed5.15.2+dfsg-9+deb11u1bullseyepackage
qtbase-opensource-src-glesfixed5.15.8+dfsg-3package
qtbase-opensource-src-glesno-dsabullseyepackage
qt4-x11removedpackage

Примечания

  • https://lists.qt-project.org/pipermail/announce/2023-May/000413.html

  • https://download.qt.io/official_releases/qt/5.15/CVE-2023-32763-qtbase-5.15.diff

  • https://download.qt.io/official_releases/qt/6.5/CVE-2023-32763-qtbase-6.5.diff

  • https://codereview.qt-project.org/c/qt/qtbase/+/476490

  • https://bugreports.qt.io/browse/QTBUG-113337

EPSS

Процентиль: 25%
0.00084
Низкий

Связанные уязвимости

CVSS3: 7.5
ubuntu
около 2 лет назад

An issue was discovered in Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.1. When a SVG file with an image inside it is rendered, a QTextLayout buffer overflow can be triggered.

CVSS3: 7.5
nvd
около 2 лет назад

An issue was discovered in Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.1. When a SVG file with an image inside it is rendered, a QTextLayout buffer overflow can be triggered.

CVSS3: 7.5
msrc
около 2 лет назад

Описание отсутствует

suse-cvrf
около 2 лет назад

Security update for libqt5-qtbase

suse-cvrf
около 2 лет назад

Security update for libqt5-qtbase

EPSS

Процентиль: 25%
0.00084
Низкий