Home

CVE-2016-10040

Description

Stack-based buffer overflow in QXmlSimpleReader in Qt 4.8.5 allows remote attackers to cause a denial of service (application crash) via a xml file with multiple nested open tags.

Risk Information

Base Score
5.5
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.617

Associated Vulnerability

VulnerabilityOS Platform
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libQtWebKit4-4.8.7+2.3.4-4.5.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libQtWebKit4-32bit-4.8.7+2.3.4-4.5.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libQtWebKit4-debuginfo-4.8.7+2.3.4-4.5.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libQtWebKit4-debuginfo-32bit-4.8.7+2.3.4-4.5.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libQtWebKit4-debugsource-4.8.7+2.3.4-4.5.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqca2-2.0.3-17.2.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqca2-32bit-2.0.3-17.2.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqca2-debuginfo-2.0.3-17.2.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqca2-debuginfo-32bit-2.0.3-17.2.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqca2-debugsource-2.0.3-17.2.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqt4-4.8.7-8.6.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqt4-32bit-4.8.7-8.6.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqt4-debuginfo-4.8.7-8.6.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqt4-debuginfo-32bit-4.8.7-8.6.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqt4-debugsource-4.8.7-8.6.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Server 12-SP3 ) libqt4-devel-doc-debuginfo-4.8.7-8.6.4.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Server 12-SP3 ) libqt4-devel-doc-debugsource-4.8.7-8.6.4.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqt4-qt3support-4.8.7-8.6.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqt4-qt3support-32bit-4.8.7-8.6.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqt4-qt3support-debuginfo-4.8.7-8.6.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqt4-qt3support-debuginfo-32bit-4.8.7-8.6.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqt4-sql-4.8.7-8.6.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqt4-sql-32bit-4.8.7-8.6.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqt4-sql-debuginfo-4.8.7-8.6.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqt4-sql-debuginfo-32bit-4.8.7-8.6.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqt4-sql-mysql-4.8.7-8.6.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqt4-sql-mysql-32bit-4.8.7-8.6.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqt4-sql-mysql-debuginfo-4.8.7-8.6.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqt4-sql-mysql-debuginfo-32bit-4.8.7-8.6.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqt4-sql-plugins-debugsource-4.8.7-8.6.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqt4-sql-postgresql-4.8.7-8.6.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqt4-sql-postgresql-32bit-4.8.7-8.6.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqt4-sql-postgresql-debuginfo-4.8.7-8.6.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqt4-sql-postgresql-debuginfo-32bit-4.8.7-8.6.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqt4-sql-sqlite-4.8.7-8.6.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqt4-sql-sqlite-32bit-4.8.7-8.6.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqt4-sql-sqlite-debuginfo-4.8.7-8.6.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqt4-sql-sqlite-debuginfo-32bit-4.8.7-8.6.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqt4-sql-unixODBC-4.8.7-8.6.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqt4-sql-unixODBC-32bit-4.8.7-8.6.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqt4-sql-unixODBC-debuginfo-4.8.7-8.6.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqt4-sql-unixODBC-debuginfo-32bit-4.8.7-8.6.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqt4-x11-4.8.7-8.6.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqt4-x11-32bit-4.8.7-8.6.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqt4-x11-debuginfo-4.8.7-8.6.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) libqt4-x11-debuginfo-32bit-4.8.7-8.6.1.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) qt4-qtscript-0.2.0-11.2.4.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) qt4-qtscript-debuginfo-0.2.0-11.2.4.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Desktop 12-SP3 ) qt4-qtscript-debugsource-0.2.0-11.2.4.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Server 12-SP3 ) qt4-x11-tools-4.8.7-8.6.4.x86_64.rpmLinux
SUSE-SU-2018:1902-1(SUSE Linux Enterprise Server 12-SP3 ) qt4-x11-tools-debuginfo-4.8.7-8.6.4.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234