5.5

CVE-2018-19872

Exploit
An issue was discovered in Qt 5.11. A malformed PPM image causes a division by zero and a crash in qppmhandler.cpp.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
QtQt Version5.11.0
OpensuseLeap Version15.0
FedoraprojectFedora Version28
FedoraprojectFedora Version29
FedoraprojectFedora Version30
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.38% 0.686
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
nvd@nist.gov 4.3 8.6 2.9
AV:N/AC:M/Au:N/C:N/I:N/A:P
CWE-369 Divide By Zero

The product divides a value by zero.

http://blog.qt.io/blog/2018/12/04/qt-5-11-3-released-important-security-updates/
Patch
Vendor Advisory
https://lists.debian.org/debian-lts-announce/2020/09/msg00023.html
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00080.html
Third Party Advisory
Mailing List
https://bugreports.qt.io/browse/QTBUG-69449
Patch
Vendor Advisory
Exploit
Issue Tracking
https://lists.debian.org/debian-lts-announce/2020/09/msg00024.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2C5FHCR4A636BLTAXL76WWDJLOAHGNYG/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FO7IBY7YYKNMRD5OI3JNNUI42WEM7NUV/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XS6G3ZDFCHWFQD4CFXWFPHREOHBBDTD7/
https://usn.ubuntu.com/4275-1/