An issue exists in gui/util/qktxhandler.cpp in Qt prior to 5.15.17, 6.x prior to 6.2.12, 6.3.x up to and including 6.5.x prior to 6.5.5, and 6.6.x prior to 6.6.2. A buffer overflow and application crash can occur via a crafted KTX image file.
Debian Bug report logs -
#1064052
qt6-base: CVE-2024-25580
Package:
src:qt6-base;
Maintainer for src:qt6-base is Debian Qt/KDE Maintainers <debian-qt-kde@listsdebianorg>;
Reported by: Moritz Mühlenhoff <jmm@inutilorg>
Date: Fri, 16 Feb 2024 14:24:04 UTC
Severity: important
Tags: security, upstream
Found in versi ...
Description<!---->A flaw was found in Qt Base This flaw allows an attacker to use a specially crafted KTX image file to trigger a buffer overflow in the application reading it, leading to a denial of serviceA flaw was found in Qt Base This flaw allows an attacker to use a specially crafted KTX image file to trigger a buffer overflow in the appli ...