CVE-2025-3512

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2025-3512

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-3512.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2025-3512

Related

UBUNTU-CVE-2025-3512

Published

2025-04-11T08:15:15Z

Modified

2025-04-27T05:50:50.322680Z

Summary

[none]

Details

There is a Heap-based Buffer Overflow vulnerability in QTextMarkdownImporter. This requires an incorrectly formatted markdown file to be passed to QTextMarkdownImporter to trigger the overflow.This issue affects Qt from 6.8.0 to 6.8.4. Versions up to 6.6.0 are known to be unaffected, and the fix is in 6.8.4 and later.

References

Affected packages

Debian:13 / qt6-base

Package

Name: qt6-base
Purl: pkg:deb/debian/qt6-base?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

6.8.2+dfsg-6

Affected versions

6.*

6.4.2+dfsg-10

6.4.2+dfsg-11~bpo11+1

6.4.2+dfsg-11

6.4.2+dfsg-12

6.4.2+dfsg-13

6.4.2+dfsg-14

6.4.2+dfsg-15

6.4.2+dfsg-16

6.4.2+dfsg-17

6.4.2+dfsg-18

6.4.2+dfsg-18+loong64

6.4.2+dfsg-19

6.4.2+dfsg-20

6.4.2+dfsg-21

6.4.2+dfsg-21.1

6.6.0+dfsg-1

6.6.0+dfsg-2

6.6.0+dfsg-3

6.6.0+dfsg-4

6.6.0+dfsg-5

6.6.0+dfsg-6

6.6.1+dfsg-1

6.6.1+dfsg-2

6.6.1+dfsg-3

6.6.1+dfsg-4

6.6.1+dfsg-5

6.6.1+dfsg-6

6.6.2+dfsg-1

6.6.2+dfsg-2

6.6.2+dfsg-3

6.6.2+dfsg-4

6.6.2+dfsg-5

6.6.2+dfsg-6

6.6.2+dfsg-7

6.6.2+dfsg-8

6.6.2+dfsg-9

6.6.2+dfsg-10

6.6.2+dfsg-11

6.6.2+dfsg-12

6.7.2+dfsg-1

6.7.2+dfsg-2

6.7.2+dfsg-3

6.7.2+dfsg-4

6.7.2+dfsg-4+m68k

6.7.2+dfsg-5

6.7.2+dfsg-6

6.8.2+dfsg-1

6.8.2+dfsg-2

6.8.2+dfsg-3

6.8.2+dfsg-4

6.8.2+dfsg-5

6.8.2+dfsg-5+m68k

Ecosystem specific

{
    "urgency": "not yet assigned"
}