VulnerableCode Package Details - pkg:deb/debian/qtsvg-opensource-src@5.11.3-2

Search for packages

Package details: pkg:deb/debian/qtsvg-opensource-src@5.11.3-2

Essentials
History (2)

purl	pkg:deb/debian/qtsvg-opensource-src@5.11.3-2

Next non-vulnerable version	5.15.8-3
Latest non-vulnerable version	5.15.8-3
Risk	3.2

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-mrk9-59jc-6yg3 Aliases: CVE-2021-3481	A flaw was found in Qt. An out-of-bounds read vulnerability was found in QRadialFetchSimd in qt/qtbase/src/gui/painting/qdrawhelper_p.h in Qt/Qtbase. While rendering and displaying a crafted Scalable Vector Graphics (SVG) file this flaw may lead to an unauthorized memory access. The highest threat from this vulnerability is to data confidentiality and the application availability.	5.15.2-3 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-y7sv-tgqj-wfh2	An issue was discovered in Qt before 5.11.3. A malformed SVG image causes a segmentation fault in qsvghandler.cpp.	CVE-2018-19869

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-08-01T19:35:42.594402+00:00	Debian Oval Importer	Fixing	VCID-y7sv-tgqj-wfh2	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T19:07:56.407657+00:00	Debian Oval Importer	Affected by	VCID-mrk9-59jc-6yg3	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0