Your submission was sent successfully! Close

CVE-2021-45930

Published: 1 January 2022

Qt SVG in Qt 5.0.0 through 5.15.2 and 6.0.0 through 6.2.1 has an out-of-bounds write in QtPrivate::QCommonArrayOps<QPainterPath::Element>::growAppend (called from QPainterPath::addPath and QPathClipper::intersect).

Priority

Medium

CVSS 3 base score: 5.5

Status

Package Release Status
qtsvg-opensource-src
Launchpad, Ubuntu, Debian
bionic
Released (5.9.5-0ubuntu1.1)
focal Needs triage

hirsute Ignored
(reached end-of-life)
impish Needs triage

jammy Needs triage

trusty Ignored
(out of standard support)
upstream Needs triage

xenial Needs triage