vulnerability
Amazon Linux AMI 2: CVE-2021-3481: Security patch for qt5-qtsvg (ALAS-2023-2242)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 6 | (AV:L/AC:M/Au:N/C:C/I:N/A:C) | Aug 22, 2022 | Oct 4, 2023 | Jan 28, 2025 |
Severity
6
CVSS
(AV:L/AC:M/Au:N/C:C/I:N/A:C)
Published
Aug 22, 2022
Added
Oct 4, 2023
Modified
Jan 28, 2025
Description
A flaw was found in Qt. An out-of-bounds read vulnerability was found in QRadialFetchSimd in qt/qtbase/src/gui/painting/qdrawhelper_p.h in Qt/Qtbase. While rendering and displaying a crafted Scalable Vector Graphics (SVG) file this flaw may lead to an unauthorized memory access. The highest threat from this vulnerability is to data confidentiality and the application availability.
Solutions
amazon-linux-ami-2-upgrade-qt5-qtsvgamazon-linux-ami-2-upgrade-qt5-qtsvg-debuginfoamazon-linux-ami-2-upgrade-qt5-qtsvg-develamazon-linux-ami-2-upgrade-qt5-qtsvg-docamazon-linux-ami-2-upgrade-qt5-qtsvg-examples
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.