CVE-2015-9541

Опубликовано: 24 янв. 2020

Источник: ubuntu

Приоритет: low

EPSS Низкий

CVSS2: 5

CVSS3: 7.5

Описание

Qt through 5.14 allows an exponential XML entity expansion attack via a crafted SVG document that is mishandled in QXmlStreamReader, a related issue to CVE-2003-1564.

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needed
devel	DNE
eoan	ignored	end of life
esm-apps/bionic	needed
esm-apps/focal	needed
esm-apps/xenial	needed
esm-infra-legacy/trusty	DNE
focal	ignored	end of standard support, was needed
groovy	DNE
hirsute	DNE

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needed
devel	DNE
eoan	ignored	end of life
esm-apps/bionic	needed
esm-apps/xenial	needed
esm-infra-legacy/trusty	needed
esm-infra/focal	DNE
focal	DNE
groovy	DNE
hirsute	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
devel	needed
eoan	ignored	end of life
esm-apps/focal	needed
esm-apps/jammy	needed
esm-apps/noble	needed
esm-infra-legacy/trusty	DNE
focal	ignored	end of standard support, was needed
groovy	ignored	end of life
hirsute	ignored	end of life

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needed
devel	DNE
eoan	ignored	end of life
esm-apps/bionic	needed
esm-infra-legacy/trusty	needed
esm-infra/focal	DNE
esm-infra/xenial	needed
focal	DNE
groovy	DNE
hirsute	DNE

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needed
devel	not-affected	5.12.5+dfsg-9build1
eoan	ignored	end of life
esm-apps/focal	not-affected	5.12.5+dfsg-9build1
esm-apps/jammy	not-affected	5.12.5+dfsg-9build1
esm-apps/noble	not-affected	5.12.5+dfsg-9build1
esm-infra-legacy/trusty	DNE
esm-infra/bionic	needed
esm-infra/xenial	needed
focal	not-affected	5.12.5+dfsg-9build1

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2015-9541

EPSS

Процентиль: 75%

0.00896

Низкий

5 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

CVE-2015-9541

CVSS3: 7.5

redhat

больше 10 лет назад

Qt through 5.14 allows an exponential XML entity expansion attack via a crafted SVG document that is mishandled in QXmlStreamReader, a related issue to CVE-2003-1564.

CVE-2015-9541

CVSS3: 7.5

nvd

почти 6 лет назад

Qt through 5.14 allows an exponential XML entity expansion attack via a crafted SVG document that is mishandled in QXmlStreamReader, a related issue to CVE-2003-1564.

CVE-2015-9541

CVSS3: 7.5

msrc

больше 4 лет назад

Описание отсутствует

CVE-2015-9541

CVSS3: 7.5

debian

почти 6 лет назад

Qt through 5.14 allows an exponential XML entity expansion attack via ...

GHSA-h29v-8cc2-w88r

CVSS3: 7.5

github

больше 3 лет назад

Qt through 5.14 allows an exponential XML entity expansion attack via a crafted SVG document that is mishandled in QXmlStreamReader, a related issue to CVE-2003-1564.

EPSS

Процентиль: 75%

0.00896

Низкий

5 Medium

CVSS2

7.5 High

CVSS3

CVE-2015-9541

Описание

Пакет phantomjs

Пакет pyside

Пакет pyside2

Пакет qt4-x11

Пакет qtbase-opensource-src

Ссылки на источники

Связанные уязвимости