An out-of-bounds memory access in the generateDirectionalRuns() function in qtextengine.cpp in Qt qtbase 5.11.x and 5.12.x prior to 5.12.5 allows malicious users to cause a denial of service by crashing an application via a text file containing many directional characters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
qt qtbase |
||
debian debian linux 9.0 |
||
debian debian linux 10.0 |