PT-2020-6229 · Qt Company+8 · Qt+8

Published

2020-08-12

·

Updated

2026-03-05

·

CVE-2020-17507

CVSS v3.1

5.3

Medium

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Name of the Vulnerable Software and Affected Versions Qt versions prior to 5.15.1
Description The issue is related to a buffer over-read in the read xbm body function. This can be exploited by a remote attacker to cause a denial of service. The estimated number of potentially affected devices is not specified.
Recommendations For Qt versions prior to 5.15.1, update to version 5.15.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the read xbm body function in gui/image/qxbmhandler.cpp to minimize the risk of exploitation.

Fix

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

ALSA-2021:1756
ALT-PU-2020-2785
ALT-PU-2020-2786
ALT-PU-2020-2787
ALT-PU-2020-2788
ALT-PU-2020-2789
ALT-PU-2020-2790
ALT-PU-2020-2791
ALT-PU-2020-2792
ALT-PU-2020-2793
ALT-PU-2020-2794
ALT-PU-2020-2795
ALT-PU-2020-2796
ALT-PU-2020-2797
ALT-PU-2020-2798
ALT-PU-2020-2799
ALT-PU-2020-2800
ALT-PU-2020-2801
ALT-PU-2020-2802
ALT-PU-2020-2803
ALT-PU-2020-2804
ALT-PU-2020-2805
ALT-PU-2020-2806
ALT-PU-2020-2807
ALT-PU-2020-2808
ALT-PU-2020-2809
ALT-PU-2020-2810
ALT-PU-2020-2811
ALT-PU-2020-2812
ALT-PU-2020-2813
ALT-PU-2020-2814
ALT-PU-2020-2815
ALT-PU-2020-2816
ALT-PU-2020-2817
ALT-PU-2020-2818
ALT-PU-2020-2819
ALT-PU-2021-1434
ALT-PU-2021-1498
ALT-PU-2021-2425
ALT-PU-2021-2426
ALT-PU-2021-2427
ALT-PU-2021-2428
ALT-PU-2021-2429
ALT-PU-2021-2430
ALT-PU-2021-2431
ALT-PU-2021-2432
ALT-PU-2021-2433
ALT-PU-2021-2434
ALT-PU-2021-2435
ALT-PU-2021-2436
ALT-PU-2021-2437
ALT-PU-2021-2438
ALT-PU-2021-2439
ALT-PU-2021-2440
ALT-PU-2021-2441
ALT-PU-2021-2442
ALT-PU-2021-2443
ALT-PU-2021-2444
ALT-PU-2021-2445
ALT-PU-2021-2446
ALT-PU-2021-2447
ALT-PU-2021-2448
ALT-PU-2021-2449
ALT-PU-2021-2450
ALT-PU-2021-2451
ALT-PU-2021-2452
ALT-PU-2021-2453
ALT-PU-2021-2454
ALT-PU-2021-2455
ALT-PU-2021-2456
ALT-PU-2021-2457
ALT-PU-2021-2458
AZL-6836
BDU:2021-03630
CESA-2020_5021
CESA-2021_1756
CVE-2020-17507
DLA-2376-1
DLA-2377-1
MGASA-2020-0347
MGASA-2021-0493
OPENSUSE-SU-2020:1452-1
OPENSUSE-SU-2020:1500-1
OPENSUSE-SU-2020:1501-1
OPENSUSE-SU-2020:1530-1
OPENSUSE-SU-2020:1564-1
OPENSUSE-SU-2020:1568-1
OPENSUSE-SU-2020:2142-1
OPENSUSE-SU-2020_1452-1
OPENSUSE-SU-2020_1501-1
OPENSUSE-SU-2020_1564-1
OPENSUSE-SU-2020_1568-1
OPENSUSE-SU-2020_2142-1
OPENSUSE-SU-2024:10975-1
RHSA-2020:5021
RHSA-2020_5021
RHSA-2021:1756
RHSA-2021_1756
SUSE-SU-2020:2741-1
SUSE-SU-2020:2742-1
SUSE-SU-2020:2748-1
SUSE-SU-2020:2751-1
SUSE-SU-2020:2760-1
SUSE-SU-2020_2741-1
SUSE-SU-2020_2742-1
SUSE-SU-2020_2748-1
SUSE-SU-2020_2751-1
SUSE-SU-2020_2760-1
SUSE-SU-2021:4155-1
SUSE-SU-2021_4155-1
USN-5081-1
USN-8076-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Linuxmint
Qt
Red Hat
Suse
Ubuntu