Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2025-3512

Опубликовано: 11 апр. 2025
Источник: redhat
CVSS3: 3.3
EPSS Низкий

Описание

There is a Heap-based Buffer Overflow vulnerability in QTextMarkdownImporter. This requires an incorrectly formatted markdown file to be passed to QTextMarkdownImporter to trigger the overflow.This issue affects Qt from 6.8.0 to 6.8.4. Versions up to 6.6.0 are known to be unaffected, and the fix is in 6.8.4 and later.

A flaw was found in QT. This vulnerability allows a heap-based buffer overflow via a specially crafted, incorrectly formatted markdown file.

Меры по смягчению последствий

Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 10qt6Fix deferred

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low
Дефект:
CWE-122
https://bugzilla.redhat.com/show_bug.cgi?id=2359030qt6: Buffer overflow in QTextMarkdownImporter

EPSS

Процентиль: 34%
0.00135
Низкий

3.3 Low

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2025-3512

ubuntu
10 месяцев назад

There is a Heap-based Buffer Overflow vulnerability in QTextMarkdownImporter. This requires an incorrectly formatted markdown file to be passed to QTextMarkdownImporter to trigger the overflow.This issue affects Qt from 6.8.0 to 6.8.4. Versions up to 6.6.0 are known to be unaffected, and the fix is in 6.8.4 and later.

nvd логотип

CVE-2025-3512

nvd
10 месяцев назад

There is a Heap-based Buffer Overflow vulnerability in QTextMarkdownImporter. This requires an incorrectly formatted markdown file to be passed to QTextMarkdownImporter to trigger the overflow.This issue affects Qt from 6.8.0 to 6.8.4. Versions up to 6.6.0 are known to be unaffected, and the fix is in 6.8.4 and later.

debian логотип

CVE-2025-3512

debian
10 месяцев назад

There is a Heap-based Buffer Overflow vulnerability in QTextMarkdownIm ...

github логотип

GHSA-794f-v4rm-x7r5

github
10 месяцев назад

There is a Heap-based Buffer Overflow vulnerability in QTextMarkdownImporter. This requires an incorrectly formatted markdown file to be passed to QTextMarkdownImporter to trigger the overflow.This issue affects Qt from 6.8.0 to 6.8.4. Versions up to 6.6.0 are known to be unaffected, and the fix is in 6.8.4 and later.

fstec логотип

BDU:2025-16100

CVSS3: 4
fstec
10 месяцев назад

Уязвимость пакета qt/qtbase библиотеки Qt, позволяющая нарушителю выполнить произвольный код

EPSS

Процентиль: 34%
0.00135
Низкий

3.3 Low

CVSS3