Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.1
CVSSv3

CVE-2021-3481

Published: 22/08/2022 Updated: 23/08/2023
CVSS v3 Base Score: 7.1 | Impact Score: 5.2 | Exploitability Score: 1.8
VMScore: 0
Subscribe to Qt

Vulnerability Summary

A flaw was found in Qt. An out-of-bounds read vulnerability was found in QRadialFetchSimd in qt/qtbase/src/gui/painting/qdrawhelper_p.h in Qt/Qtbase. While rendering and displaying a crafted Scalable Vector Graphics (SVG) file this flaw may lead to an unauthorized memory access. The highest threat from this vulnerability is to data confidentiality and the application availability.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

qt qt 5.15.1

qt qt 6.0.2

qt qt 6.0.0

qt qt 6.2.0

Vendor Advisories

Debian CVElist Bug Report Logs: CVE-2021-3481
Debian Bug report logs - #986798 CVE-2021-3481 Package: src:qtsvg-opensource-src; Maintainer for src:qtsvg-opensource-src is Debian Qt/KDE Maintainers <debian-qt-kde@listsdebianorg>; Reported by: Moritz Muehlenhoff <jmm@debianorg> Date: Mon, 12 Apr 2021 09:42:02 UTC Severity: important Tags: security, upstream Fi ...
Red Hat: Important: OpenShift Container Platform 4.11.0 bug fix and security update
Synopsis Important: OpenShift Container Platform 4110 bug fix and security update Type/Severity Security Advisory: Important Topic Red Hat OpenShift Container Platform release 4110 is now available withupdates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShift Co ...
Arch Linux Issues:
An out-of-bounds (OOB) memory access security issue was found in QRadialFetchSimd in qt/qtbase/src/gui/painting/qdrawhelper_ph in Qt While processing a crafted SVG input file, parsed doubles are interpreted as floats, and this may lead to an unauthorised memory access problem, and may even lead to a denial of service ...

Github Repositories

https://github.com/cilegordev/CBL-Mariner-DE

Components for building Xfce DE in CBL-Mariner.

CBL-Mariner-DE Components for building Xfce DE in CBL-Mariner Why did I make this? because there is no package in the Repository and it is difficult to reset it manually I have tried to do it due to limited knowledge I gave up and needed help I hope someone can help Concept Preference Beyond Linux® From Scratch (System V Edition) : wwwlinuxfromscratchorg/ 24

References

CWE-125https://codereview.qt-project.org/c/qt/qtsvg/+/337646https://bugzilla.redhat.com/show_bug.cgi?id=1931444https://bugreports.qt.io/browse/QTBUG-91507https://access.redhat.com/security/cve/CVE-2021-3481https://lists.debian.org/debian-lts-announce/2023/08/msg00028.htmlhttps://bugs.debian.org/cgi-bin/bugreport.cgi?bug=986798https://nvd.nist.govhttps://github.com/cilegordev/CBL-Mariner-DEhttps://security.archlinux.org/CVE-2021-3481
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32886insecure direct object referenceCVE-2024-34342file inclusionCVE-2024-34562CVE-2024-34347CVE-2024-26026CVE-2024-4647unprivileged
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook