Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2024-25580

Published: 27/03/2024 Updated: 27/03/2024

Vulnerability Summary

An issue exists in gui/util/qktxhandler.cpp in Qt prior to 5.15.17, 6.x prior to 6.2.12, 6.3.x up to and including 6.5.x prior to 6.5.5, and 6.6.x prior to 6.6.2. A buffer overflow and application crash can occur via a crafted KTX image file.

Vendor Advisories

Debian CVElist Bug Report Logs: qt6-base: CVE-2024-25580
Debian Bug report logs - #1064052 qt6-base: CVE-2024-25580 Package: src:qt6-base; Maintainer for src:qt6-base is Debian Qt/KDE Maintainers <debian-qt-kde@listsdebianorg>; Reported by: Moritz Mühlenhoff <jmm@inutilorg> Date: Fri, 16 Feb 2024 14:24:04 UTC Severity: important Tags: security, upstream Found in versi ...
Red Hat:
Description<!---->A flaw was found in Qt Base This flaw allows an attacker to use a specially crafted KTX image file to trigger a buffer overflow in the application reading it, leading to a denial of serviceA flaw was found in Qt Base This flaw allows an attacker to use a specially crafted KTX image file to trigger a buffer overflow in the appli ...

References

https://www.qt.io/blog/security-advisory-potential-buffer-overflow-when-reading-ktx-imageshttps://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1064052https://nvd.nist.govhttps://access.redhat.com/security/cve/cve-2024-25580
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereferenceCVE-2023-52689CVE-2024-23803client sideCVE-2023-52696information disclosureCVE-2024-35843CVE-2024-27130CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook