PT-2021-8283 · Qt Company+9 · Qt+9

Pedro Sampaio

·

Published

2021-02-11

·

Updated

2026-05-28

·

CVE-2021-3481

CVSS v3.1

7.1

High

VectorAV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H
Name of the Vulnerable Software and Affected Versions Qt (affected versions not specified)
Description A flaw was found in Qt, specifically an out-of-bounds read vulnerability in QRadialFetchSimd in qt/qtbase/src/gui/painting/qdrawhelper p.h. This issue may lead to unauthorized memory access when rendering and displaying a crafted Scalable Vector Graphics (SVG) file, posing a threat to data confidentiality and application availability. The vulnerability can be exploited to cause a denial of service.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Out of bounds Read

Weakness Enumeration

CWE-125

Related Identifiers

ALSA-2021:4172
ALT-PU-2021-1254
ALT-PU-2021-1255
ALT-PU-2021-1256
ALT-PU-2021-1257
ALT-PU-2021-1258
ALT-PU-2021-1259
ALT-PU-2021-1260
ALT-PU-2021-1261
ALT-PU-2021-1262
ALT-PU-2021-1263
ALT-PU-2021-1264
ALT-PU-2021-1265
ALT-PU-2021-1266
ALT-PU-2021-1267
ALT-PU-2021-1268
ALT-PU-2021-1269
ALT-PU-2021-1270
ALT-PU-2021-1271
ALT-PU-2021-1272
ALT-PU-2021-1273
ALT-PU-2021-1274
ALT-PU-2021-1275
ALT-PU-2021-1276
ALT-PU-2021-1277
ALT-PU-2021-1278
ALT-PU-2021-1279
ALT-PU-2021-1280
ALT-PU-2021-1281
ALT-PU-2021-1282
ALT-PU-2021-1283
ALT-PU-2021-1284
ALT-PU-2021-1285
ALT-PU-2021-1286
ALT-PU-2021-1287
ALT-PU-2021-1288
BDU:2025-01017
CESA-2021_4172
CVE-2021-3481
DLA-2885-1
DLA-2895-1
DLA-3539-1
MGASA-2021-0262
OPENSUSE-SU-2021:1371-1
OPENSUSE-SU-2021:3354-1
OPENSUSE-SU-2021_1371-1
OPENSUSE-SU-2021_3354-1
OPENSUSE-SU-2024:10976-1
RHSA-2021:4172
RHSA-2021_4172
RLSA-2021:4172
SUSE-SU-2021:3333-1
SUSE-SU-2021:3354-1
SUSE-SU-2021:4155-1
SUSE-SU-2021_3333-1
SUSE-SU-2021_3354-1
USN-5241-1
USN-8337-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Qt
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu