Search CVE reports
1 – 5 of 5 results
CVE-2021-28025
Medium priorityInteger Overflow vulnerability in qsvghandler.cpp in Qt qtsvg versions 5.15.1, 6.0.0, 6.0.2, and 6.2, allows local attackers to cause a denial of service (DoS).
3 affected packages
qt4-x11, qt6-svg, qtsvg-opensource-src
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
qt4-x11 | Not in release | Not in release | Not in release | Needs evaluation | Needs evaluation |
qt6-svg | Needs evaluation | Needs evaluation | Not in release | Ignored | Ignored |
qtsvg-opensource-src | Not affected | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
CVE-2023-32573
Medium priorityIn Qt before 5.15.14, 6.0.x through 6.2.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.1, QtSvg QSvgFont m_unitsPerEm initialization is mishandled.
2 affected packages
qt6-svg, qtsvg-opensource-src
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
qt6-svg | Needs evaluation | Needs evaluation | Not in release | Not in release | Ignored |
qtsvg-opensource-src | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
CVE-2021-45930
Medium prioritySome fixes available 1 of 11
Qt SVG in Qt 5.0.0 through 5.15.2 and 6.0.0 through 6.2.1 has an out-of-bounds write in QtPrivate::QCommonArrayOps<QPainterPath::Element>::growAppend (called from QPainterPath::addPath and QPathClipper::intersect).
1 affected packages
qtsvg-opensource-src
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
qtsvg-opensource-src | Needs evaluation | Needs evaluation | Needs evaluation | Fixed | Needs evaluation |
CVE-2021-3481
Low prioritySome fixes available 1 of 15
A flaw was found in Qt. An out-of-bounds read vulnerability was found in QRadialFetchSimd in qt/qtbase/src/gui/painting/qdrawhelper_p.h in Qt/Qtbase. While rendering and displaying a crafted Scalable Vector Graphics (SVG) file...
2 affected packages
qt4-x11, qtsvg-opensource-src
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
qt4-x11 | Not in release | Not in release | Not in release | Needs evaluation | Needs evaluation |
qtsvg-opensource-src | Needs evaluation | Needs evaluation | Needs evaluation | Fixed | Needs evaluation |
CVE-2018-19869
Low prioritySome fixes available 1 of 8
An issue was discovered in Qt before 5.11.3. A malformed SVG image causes a segmentation fault in qsvghandler.cpp.
2 affected packages
qt4-x11, qtsvg-opensource-src
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
qt4-x11 | Not in release | Not in release | Not in release | Needs evaluation | Needs evaluation |
qtsvg-opensource-src | Not affected | Not affected | Not affected | Fixed | Needs evaluation |