Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2024-25580

Опубликовано: 27 мар. 2024
Источник: debian
EPSS Низкий

Описание

An issue was discovered in gui/util/qktxhandler.cpp in Qt before 5.15.17, 6.x before 6.2.12, 6.3.x through 6.5.x before 6.5.5, and 6.6.x before 6.6.2. A buffer overflow and application crash can occur via a crafted KTX image file.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
qt6-basefixed6.6.2+dfsg-1experimentalpackage
qt6-basefixed6.6.2+dfsg-8package
qt6-baseno-dsabookwormpackage
qtbase-opensource-srcfixed5.15.10+dfsg-7package
qtbase-opensource-srcfixed5.15.8+dfsg-11+deb12u2bookwormpackage
qtbase-opensource-srcfixed5.15.2+dfsg-9+deb11u1bullseyepackage
qtbase-opensource-srcnot-affectedbusterpackage
qtbase-opensource-src-glesfixed5.15.10+dfsg-5package
qtbase-opensource-src-glesno-dsabookwormpackage
qtbase-opensource-src-glesno-dsabullseyepackage

Примечания

  • https://bugzilla.redhat.com/show_bug.cgi?id=2264423

  • https://code.qt.io/cgit/qt/qtbase.git/commit/?id=28ecb523ce8490bff38b251b3df703c72e057519

  • https://code.qt.io/cgit/qt/qtbase.git/commit/?id=dec1863c7dc63e5788b0c6c061d36e856a6ae2b2 (v6.6.2)

  • https://download.qt.io/official_releases/qt/5.15/CVE-2024-25580-qtbase-5.15.diff

  • https://www.qt.io/blog/security-advisory-potential-buffer-overflow-when-reading-ktx-images

EPSS

Процентиль: 7%
0.00031
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2024-25580

CVSS3: 6.2
ubuntu
около 1 года назад

An issue was discovered in gui/util/qktxhandler.cpp in Qt before 5.15.17, 6.x before 6.2.12, 6.3.x through 6.5.x before 6.5.5, and 6.6.x before 6.6.2. A buffer overflow and application crash can occur via a crafted KTX image file.

redhat логотип

CVE-2024-25580

CVSS3: 6.2
redhat
больше 1 года назад

An issue was discovered in gui/util/qktxhandler.cpp in Qt before 5.15.17, 6.x before 6.2.12, 6.3.x through 6.5.x before 6.5.5, and 6.6.x before 6.6.2. A buffer overflow and application crash can occur via a crafted KTX image file.

nvd логотип

CVE-2024-25580

CVSS3: 6.2
nvd
около 1 года назад

An issue was discovered in gui/util/qktxhandler.cpp in Qt before 5.15.17, 6.x before 6.2.12, 6.3.x through 6.5.x before 6.5.5, and 6.6.x before 6.6.2. A buffer overflow and application crash can occur via a crafted KTX image file.

msrc логотип

CVE-2024-25580

CVSS3: 6.2
msrc
8 месяцев назад

Описание отсутствует

github логотип

GHSA-2952-j2hp-678j

CVSS3: 6.2
github
около 1 года назад

An issue was discovered in gui/util/qktxhandler.cpp in Qt before 5.15.17, 6.x before 6.2.12, 6.3.x through 6.5.x before 6.5.5, and 6.6.x before 6.6.2. A buffer overflow and application crash can occur via a crafted KTX image file.

EPSS

Процентиль: 7%
0.00031
Низкий