CVE-2011-3194

Name of the Vulnerable Software and Affected Versions Qt versions prior to 4.7.4

Description The issue is related to a buffer overflow in the TIFF reader, which can be triggered by a greyscale TIFF image with multiple samples per pixel, specifically via the TIFFTAG SAMPLESPERPIXEL tag. This can cause a denial of service (crash) and potentially allow the execution of arbitrary code. The vulnerability can be exploited remotely, potentially leading to a breach of confidentiality, integrity, and availability of protected information.

Recommendations For Qt versions prior to 4.7.4, update to version 4.7.4 or later to resolve the issue. As a temporary workaround, consider restricting the handling of TIFF images with multiple samples per pixel to minimize the risk of exploitation.