SUSE-SU-2024:3078-1
- Source
- https://www.suse.com/support/update/announcement/2024/suse-su-20243078-1/
- Import Source
- https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2024:3078-1.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/SUSE-SU-2024:3078-1
- Upstream
- Related
- Published
- 2024-09-02T14:43:00Z
- Modified
- 2025-05-08T17:33:43.120486Z
- Summary
- Security update for libqt5-qtquick3d
- Details
-
This update for libqt5-qtquick3d fixes the following issues:
- CVE-2024-40724: Fixed heap-based buffer overflow in the PLY importer class in assimp (bsc#1228199)
Other fixes: - Fix progressive anti-aliasing, which doesn't work if any object in the scene used a PrincipledMaterial - Skip processing unknown uniforms, such as those that are vendor specific:
- References
Affected packages
SUSE:Linux Enterprise Module for Package Hub 15 SP5 / libqt5-qtquick3d
Package
- Name
- libqt5-qtquick3d
- Purl
- pkg:rpm/suse/libqt5-qtquick3d&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP5
openSUSE:Leap 15.5 / libqt5-qtquick3d
Package
- Name
- libqt5-qtquick3d
- Purl
- pkg:rpm/opensuse/libqt5-qtquick3d&distro=openSUSE%20Leap%2015.5
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed5.15.8+kde1-150500.3.3.1
Ecosystem specific
{
"binaries": [
{
"libQt5Quick3DAssetImport5": "5.15.8+kde1-150500.3.3.1",
"libqt5-qtquick3d-imports": "5.15.8+kde1-150500.3.3.1",
"libqt5-qtquick3d-examples": "5.15.8+kde1-150500.3.3.1",
"libqt5-qtquick3d-devel": "5.15.8+kde1-150500.3.3.1",
"libqt5-qtquick3d-tools": "5.15.8+kde1-150500.3.3.1",
"libQt5Quick3D5": "5.15.8+kde1-150500.3.3.1",
"libqt5-qtquick3d-private-headers-devel": "5.15.8+kde1-150500.3.3.1"
}
]
}