CVE-2018-19873

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2018-19873

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-19873.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2018-19873

Downstream

DEBIAN-CVE-2018-19873

DLA-1627-1

DLA-1786-1

DLA-2377-1

DSA-4374-1

RHSA-2019:2135

RHSA-2019:3390

RHSA-2020:1172

SUSE-SU-2018:4179-1

SUSE-SU-2018:4183-1

SUSE-SU-2018:4210-1

SUSE-SU-2018:4210-2

SUSE-SU-2018:4294-1

SUSE-SU-2019:0447-1

SUSE-SU-2020:1021-1

UBUNTU-CVE-2018-19873

USN-4003-1

openSUSE-SU-2019:0265-1

openSUSE-SU-2020:1452-1

openSUSE-SU-2020:1500-1

openSUSE-SU-2020:1501-1

openSUSE-SU-2020:1530-1

Related

Published

2018-12-26T21:29:02Z

Modified

2025-10-13T07:31:09.590706Z

Severity

9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

An issue was discovered in Qt before 5.11.3. QBmpHandler has a buffer overflow via BMP data.

References

Affected packages

Git / github.com/qt/qt5

Affected ranges

Type: GIT
Repo: https://github.com/qt/qt5
Events: Introduced

adcdf7b49f52e745009ff7e37e07c2d831ad82dc

Fixed

1deea3debce6bfd0fd45545b3a8e1de80380a9a5

Type: GIT
Repo: https://github.com/qt/qtbase
Events: Introduced

50117d738af526cbfbd5afa50b9a501acb0fb9ce

Fixed

08de243eaa007597c2bfbc97d3d14e2f821ac4be

Affected versions

v5.*

v5.10.0

v5.10.0-rc3

v5.10.1

v5.11.0

v5.11.0-alpha1

v5.11.0-beta1

v5.11.0-beta2

v5.11.0-beta3

v5.11.0-beta4

v5.11.0-rc1

v5.11.0-rc2

v5.11.1

v5.11.2

v5.9.4