Search for packages
| purl | pkg:deb/ubuntu/qtbase-opensource-src@5.12.5%2Bdfsg-4 |
| Next non-vulnerable version | 5.12.8+dfsg-0ubuntu1 |
| Latest non-vulnerable version | 5.12.8+dfsg-0ubuntu1 |
| Risk | 3.5 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-1qkn-nzf8-aaaf
Aliases: CVE-2015-9541 |
Qt through 5.14 allows an exponential XML entity expansion attack via a crafted SVG document that is mishandled in QXmlStreamReader, a related issue to CVE-2003-1564. |
Affected by 1 other vulnerability. |
|
VCID-9m91-css2-aaad
Aliases: CVE-2020-24742 |
An issue has been fixed in Qt versions 5.14.0 where QPluginLoader attempts to load plugins relative to the working directory, allowing attackers to execute arbitrary code via crafted files. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|