Описание
Stack-based buffer overflow in QXmlSimpleReader in Qt 4.8.5 allows remote attackers to cause a denial of service (application crash) via a xml file with multiple nested open tags.
A stack overflow flaw was found in the way Qt parsed XML input with several nested opening tags. An application using Qt's QXmlSimpleReader to parse specially crafted XML input could crash.
Отчет
Red Hat Product Security has rated this issue as having Low security impact. This issue is not currently planned to be addressed in future updates. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 5 | qt | Will not fix | ||
| Red Hat Enterprise Linux 5 | qt4 | Will not fix | ||
| Red Hat Enterprise Linux 6 | qt | Will not fix | ||
| Red Hat Enterprise Linux 6 | qt3 | Will not fix | ||
| Red Hat Enterprise Linux 7 | qt | Will not fix | ||
| Red Hat Enterprise Linux 7 | qt3 | Will not fix | ||
| Red Hat Enterprise Linux 7 | qt5-qtbase | Will not fix |
Показывать по
Дополнительная информация
Статус:
3.7 Low
CVSS3
Связанные уязвимости
Stack-based buffer overflow in QXmlSimpleReader in Qt 4.8.5 allows remote attackers to cause a denial of service (application crash) via a xml file with multiple nested open tags.
Stack-based buffer overflow in QXmlSimpleReader in Qt 4.8.5 allows remote attackers to cause a denial of service (application crash) via a xml file with multiple nested open tags.
Stack-based buffer overflow in QXmlSimpleReader in Qt 4.8.5 allows rem ...
Stack-based buffer overflow in QXmlSimpleReader in Qt 4.8.5 allows remote attackers to cause a denial of service (application crash) via a xml file with multiple nested open tags.
3.7 Low
CVSS3