Описание
The BMP decoder in QtGui in QT before 5.5 does not properly calculate the masks used to extract the color components, which allows remote attackers to cause a denial of service (divide-by-zero and crash) via a crafted BMP file.
Отчет
This issue affects the versions of Qt as shipped with Red Hat Enterprise Linux 5, 6 and 7. Red Hat Product Security has rated this issue as having Low security impact. A future update may address this issue. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 4 | qt | Will not fix | ||
| Red Hat Enterprise Linux 5 | qt | Will not fix | ||
| Red Hat Enterprise Linux 5 | qt4 | Will not fix | ||
| Red Hat Enterprise Linux 6 | qt | Will not fix | ||
| Red Hat Enterprise Linux 6 | qt3 | Will not fix | ||
| Red Hat Enterprise Linux 7 | qt | Will not fix | ||
| Red Hat Enterprise Linux 7 | qt3 | Will not fix |
Показывать по
Дополнительная информация
Статус:
4.3 Medium
CVSS2
Связанные уязвимости
The BMP decoder in QtGui in QT before 5.5 does not properly calculate the masks used to extract the color components, which allows remote attackers to cause a denial of service (divide-by-zero and crash) via a crafted BMP file.
The BMP decoder in QtGui in QT before 5.5 does not properly calculate the masks used to extract the color components, which allows remote attackers to cause a denial of service (divide-by-zero and crash) via a crafted BMP file.
The BMP decoder in QtGui in QT before 5.5 does not properly calculate ...
The BMP decoder in QtGui in QT before 5.5 does not properly calculate the masks used to extract the color components, which allows remote attackers to cause a denial of service (divide-by-zero and crash) via a crafted BMP file.
4.3 Medium
CVSS2