Computer Security
[EN] securityvulns.ru no-pyccku


qt multiple security vulnerabilities
Published:05.05.2015
Source:
SecurityVulns ID:14449
Type:library
Threat Level:
7/10
Description:Memory corruptions on different graphics formats parsing.
Affected:QT : qt 5.5
CVE:CVE-2015-1860 (Multiple buffer overflows in the QtBase module in Qt before 4.8.7 and 5.x before 5.4.2 allow remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted GIF image.)
 CVE-2015-1859 (Multiple buffer overflows in the QtBase module in Qt before 4.8.7 and 5.x before 5.4.2 allow remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted ICO image.)
 CVE-2015-1858 (Multiple buffer overflows in the QtBase module in Qt before 4.8.7 and 5.x before 5.4.2 allow remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted BMP image.)
 CVE-2015-0295 (The BMP decoder in QtGui in QT before 5.5 does not properly calculate the masks used to extract the color components, which allows remote attackers to cause a denial of service (divide-by-zero and crash) via a crafted BMP file.)
Original documentdocumentSLACKWARE, [slackware-security] qt (SSA:2015-111-13) (05.05.2015)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod