vulnerability
Alma Linux: CVE-2023-37369: Moderate: qt5 security and bug fix update (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:N/AC:L/Au:N/C:N/I:N/A:C) | Aug 20, 2023 | Nov 16, 2023 | Apr 17, 2026 |
Severity
8
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:C)
Published
Aug 20, 2023
Added
Nov 16, 2023
Modified
Apr 17, 2026
Description
In Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.2, there can be an application crash in QXmlStreamReader via a crafted XML string that triggers a situation in which a prefix is greater than a length.
Solutions
alma-upgrade-qt5alma-upgrade-qt5-develalma-upgrade-qt5-qtbasealma-upgrade-qt5-qtbase-commonalma-upgrade-qt5-qtbase-develalma-upgrade-qt5-qtbase-examplesalma-upgrade-qt5-qtbase-guialma-upgrade-qt5-qtbase-mysqlalma-upgrade-qt5-qtbase-odbcalma-upgrade-qt5-qtbase-postgresqlalma-upgrade-qt5-qtbase-private-develalma-upgrade-qt5-qtbase-staticalma-upgrade-qt5-rpm-macrosalma-upgrade-qt5-srpm-macros
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.