Home

CVE-2015-9541

Description

Qt through 5.14 allows an exponential XML entity expansion attack via a crafted SVG document that is mishandled in QXmlStreamReader, a related issue to CVE-2003-1564.

Risk Information

Base Score
7.5
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.896

Associated Vulnerability

VulnerabilityOS Platform
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-assistant-5.12.5-2.el8.x86_64.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-designer-5.12.5-2.el8.x86_64.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-doctools-5.12.5-2.el8.x86_64.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-linguist-5.12.5-2.el8.x86_64.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qdbusviewer-5.12.5-2.el8.x86_64.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-5.12.5-6.el8.i686.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-5.12.5-6.el8.x86_64.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-common-5.12.5-6.el8.noarch.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-debugsource-5.12.5-6.el8.i686.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-debugsource-5.12.5-6.el8.x86_64.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-devel-5.12.5-6.el8.i686.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-devel-5.12.5-6.el8.x86_64.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-examples-5.12.5-6.el8.i686.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-examples-5.12.5-6.el8.x86_64.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-gui-5.12.5-6.el8.i686.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-gui-5.12.5-6.el8.x86_64.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-mysql-5.12.5-6.el8.i686.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-mysql-5.12.5-6.el8.x86_64.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-odbc-5.12.5-6.el8.i686.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-odbc-5.12.5-6.el8.x86_64.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-postgresql-5.12.5-6.el8.i686.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-postgresql-5.12.5-6.el8.x86_64.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-private-devel-5.12.5-6.el8.i686.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-private-devel-5.12.5-6.el8.x86_64.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qttools-5.12.5-2.el8.x86_64.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qttools-common-5.12.5-2.el8.noarch.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qttools-debugsource-5.12.5-2.el8.i686.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qttools-debugsource-5.12.5-2.el8.x86_64.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qttools-devel-5.12.5-2.el8.i686.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qttools-devel-5.12.5-2.el8.x86_64.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qttools-examples-5.12.5-2.el8.i686.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qttools-examples-5.12.5-2.el8.x86_64.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qttools-libs-designer-5.12.5-2.el8.i686.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qttools-libs-designer-5.12.5-2.el8.x86_64.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qttools-libs-designercomponents-5.12.5-2.el8.i686.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qttools-libs-designercomponents-5.12.5-2.el8.x86_64.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qttools-libs-help-5.12.5-2.el8.i686.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qttools-libs-help-5.12.5-2.el8.x86_64.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtwebsockets-5.12.5-2.el8.i686.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtwebsockets-5.12.5-2.el8.x86_64.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtwebsockets-debugsource-5.12.5-2.el8.i686.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtwebsockets-debugsource-5.12.5-2.el8.x86_64.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtwebsockets-devel-5.12.5-2.el8.i686.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtwebsockets-devel-5.12.5-2.el8.x86_64.rpmLinux
(RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtwebsockets-examples-5.12.5-2.el8.x86_64.rpmLinux
Qt5-assistant update (ELSA-2020-4690) qt5-assistant-5.12.5-2.el8.x86_64.rpmLinux
Qt5-designer update (ELSA-2020-4690) qt5-designer-5.12.5-2.el8.x86_64.rpmLinux
Qt5-doctools update (ELSA-2020-4690) qt5-doctools-5.12.5-2.el8.x86_64.rpmLinux
Qt5-linguist update (ELSA-2020-4690) qt5-linguist-5.12.5-2.el8.x86_64.rpmLinux
Qt5-qdbusviewer update (ELSA-2020-4690) qt5-qdbusviewer-5.12.5-2.el8.x86_64.rpmLinux
Qt5-qtbase update (ELSA-2020-4690) qt5-qtbase-5.12.5-6.el8.i686.rpmLinux
Qt5-qtbase update (ELSA-2020-4690) qt5-qtbase-5.12.5-6.el8.x86_64.rpmLinux
Qt5-qtbase-common update (ELSA-2020-4690) qt5-qtbase-common-5.12.5-6.el8.noarch.rpmLinux
Qt5-qtbase-devel update (ELSA-2020-4690) qt5-qtbase-devel-5.12.5-6.el8.i686.rpmLinux
Qt5-qtbase-devel update (ELSA-2020-4690) qt5-qtbase-devel-5.12.5-6.el8.x86_64.rpmLinux
Qt5-qtbase-examples update (ELSA-2020-4690) qt5-qtbase-examples-5.12.5-6.el8.i686.rpmLinux
Qt5-qtbase-examples update (ELSA-2020-4690) qt5-qtbase-examples-5.12.5-6.el8.x86_64.rpmLinux
Qt5-qtbase-gui update (ELSA-2020-4690) qt5-qtbase-gui-5.12.5-6.el8.i686.rpmLinux
Qt5-qtbase-gui update (ELSA-2020-4690) qt5-qtbase-gui-5.12.5-6.el8.x86_64.rpmLinux
Qt5-qtbase-mysql update (ELSA-2020-4690) qt5-qtbase-mysql-5.12.5-6.el8.i686.rpmLinux
Qt5-qtbase-mysql update (ELSA-2020-4690) qt5-qtbase-mysql-5.12.5-6.el8.x86_64.rpmLinux
Qt5-qtbase-odbc update (ELSA-2020-4690) qt5-qtbase-odbc-5.12.5-6.el8.i686.rpmLinux
Qt5-qtbase-odbc update (ELSA-2020-4690) qt5-qtbase-odbc-5.12.5-6.el8.x86_64.rpmLinux
Qt5-qtbase-postgresql update (ELSA-2020-4690) qt5-qtbase-postgresql-5.12.5-6.el8.i686.rpmLinux
Qt5-qtbase-postgresql update (ELSA-2020-4690) qt5-qtbase-postgresql-5.12.5-6.el8.x86_64.rpmLinux
Qt5-qtbase-private-devel update (ELSA-2020-4690) qt5-qtbase-private-devel-5.12.5-6.el8.i686.rpmLinux
Qt5-qtbase-private-devel update (ELSA-2020-4690) qt5-qtbase-private-devel-5.12.5-6.el8.x86_64.rpmLinux
Qt5-qttools update (ELSA-2020-4690) qt5-qttools-5.12.5-2.el8.x86_64.rpmLinux
Qt5-qttools-common update (ELSA-2020-4690) qt5-qttools-common-5.12.5-2.el8.noarch.rpmLinux
Qt5-qttools-devel update (ELSA-2020-4690) qt5-qttools-devel-5.12.5-2.el8.i686.rpmLinux
Qt5-qttools-devel update (ELSA-2020-4690) qt5-qttools-devel-5.12.5-2.el8.x86_64.rpmLinux
Qt5-qttools-examples update (ELSA-2020-4690) qt5-qttools-examples-5.12.5-2.el8.i686.rpmLinux
Qt5-qttools-examples update (ELSA-2020-4690) qt5-qttools-examples-5.12.5-2.el8.x86_64.rpmLinux
Qt5-qttools-libs-designer update (ELSA-2020-4690) qt5-qttools-libs-designer-5.12.5-2.el8.i686.rpmLinux
Qt5-qttools-libs-designer update (ELSA-2020-4690) qt5-qttools-libs-designer-5.12.5-2.el8.x86_64.rpmLinux
Qt5-qttools-libs-designercomponents update (ELSA-2020-4690) qt5-qttools-libs-designercomponents-5.12.5-2.el8.i686.rpmLinux
Qt5-qttools-libs-designercomponents update (ELSA-2020-4690) qt5-qttools-libs-designercomponents-5.12.5-2.el8.x86_64.rpmLinux
Qt5-qttools-libs-help update (ELSA-2020-4690) qt5-qttools-libs-help-5.12.5-2.el8.i686.rpmLinux
Qt5-qttools-libs-help update (ELSA-2020-4690) qt5-qttools-libs-help-5.12.5-2.el8.x86_64.rpmLinux
Qt5-qtwebsockets update (ELSA-2020-4690) qt5-qtwebsockets-5.12.5-2.el8.i686.rpmLinux
Qt5-qtwebsockets update (ELSA-2020-4690) qt5-qtwebsockets-5.12.5-2.el8.x86_64.rpmLinux
Qt5-qtwebsockets-devel update (ELSA-2020-4690) qt5-qtwebsockets-devel-5.12.5-2.el8.i686.rpmLinux
Qt5-qtwebsockets-devel update (ELSA-2020-4690) qt5-qtwebsockets-devel-5.12.5-2.el8.x86_64.rpmLinux
Qt5-qtwebsockets-examples update (ELSA-2020-4690) qt5-qtwebsockets-examples-5.12.5-2.el8.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234