Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2025-5992

Опубликовано: 11 июл. 2025
Источник: redhat
CVSS3: 3.1
EPSS Низкий

Описание

When passing values outside of the expected range to QColorTransferGenericFunction it can cause a denial of service, for example, this can happen when passing a specifically crafted ICC profile to QColorSpace::fromICCProfile.This issue affects Qt from 6.6.0 through 6.8.3, from 6.9.0 through 6.9.1. This is fixed in 6.8.4 and 6.9.2.

A denial of service flaw has been discovered in the Qt library. A call to QColorTransferGenericFunction may cause a crash if passed a maliciously crafted ICC profile.

Меры по смягчению последствий

Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 10qt6Fix deferred

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low
Дефект:
CWE-20
https://bugzilla.redhat.com/show_bug.cgi?id=2379493qt6: Qt6 denial of service

EPSS

Процентиль: 24%
0.00078
Низкий

3.1 Low

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2025-5992

ubuntu
26 дней назад

When passing values outside of the expected range to QColorTransferGenericFunction it can cause a denial of service, for example, this can happen when passing a specifically crafted ICC profile to QColorSpace::fromICCProfile.This issue affects Qt from 6.6.0 through 6.8.3, from 6.9.0 through 6.9.1. This is fixed in 6.8.4 and 6.9.2.

nvd логотип

CVE-2025-5992

nvd
26 дней назад

When passing values outside of the expected range to QColorTransferGenericFunction it can cause a denial of service, for example, this can happen when passing a specifically crafted ICC profile to QColorSpace::fromICCProfile.This issue affects Qt from 6.6.0 through 6.8.3, from 6.9.0 through 6.9.1. This is fixed in 6.8.4 and 6.9.2.

debian логотип

CVE-2025-5992

debian
26 дней назад

When passing values outside of the expected range to QColorTransferGen ...

github логотип

GHSA-45wh-m547-4rh9

github
26 дней назад

When passing values outside of the expected range to QColorTransferGenericFunction it can cause a denial of service, for example, this can happen when passing a specifically crafted ICC profile to QColorSpace::fromICCProfile.This issue affects Qt from 6.6.0 through 6.8.3, from 6.9.0 through 6.9.1. This is fixed in 6.8.4 and 6.9.2.

EPSS

Процентиль: 24%
0.00078
Низкий

3.1 Low

CVSS3