vulnerability

SUSE: CVE-2025-5992: SUSE Linux Security Advisory

Try Surface Command
Back to search
Severity
3
CVSS
(AV:N/AC:H/Au:N/C:N/I:N/A:P)
Published
Nov 5, 2025
Added
Nov 5, 2025
Modified
Dec 24, 2025

Description

When passing values outside of the expected range to QColorTransferGenericFunction it can cause a denial of service, for example, this can happen when passing a specifically crafted ICC profile to QColorSpace::fromICCProfile.This issue affects Qt from 6.6.0 through 6.8.3, from 6.9.0 through 6.9.1. This is fixed in 6.8.4 and 6.9.2.

Solutions

suse-upgrade-libqt6concurrent6suse-upgrade-libqt6core6suse-upgrade-libqt6dbus6suse-upgrade-libqt6gui6suse-upgrade-libqt6network6suse-upgrade-libqt6opengl6suse-upgrade-libqt6openglwidgets6suse-upgrade-libqt6printsupport6suse-upgrade-libqt6sql6suse-upgrade-libqt6test6suse-upgrade-libqt6widgets6suse-upgrade-libqt6xml6suse-upgrade-qt6-base-common-develsuse-upgrade-qt6-base-develsuse-upgrade-qt6-base-docs-htmlsuse-upgrade-qt6-base-docs-qchsuse-upgrade-qt6-base-examplessuse-upgrade-qt6-base-private-develsuse-upgrade-qt6-concurrent-develsuse-upgrade-qt6-core-develsuse-upgrade-qt6-core-private-develsuse-upgrade-qt6-dbus-develsuse-upgrade-qt6-dbus-private-develsuse-upgrade-qt6-docs-commonsuse-upgrade-qt6-exampleicons-devel-staticsuse-upgrade-qt6-gui-develsuse-upgrade-qt6-gui-private-develsuse-upgrade-qt6-kmssupport-devel-staticsuse-upgrade-qt6-kmssupport-private-develsuse-upgrade-qt6-network-develsuse-upgrade-qt6-network-private-develsuse-upgrade-qt6-network-tlssuse-upgrade-qt6-networkinformation-glibsuse-upgrade-qt6-networkinformation-nmsuse-upgrade-qt6-opengl-develsuse-upgrade-qt6-opengl-private-develsuse-upgrade-qt6-openglwidgets-develsuse-upgrade-qt6-platformsupport-devel-staticsuse-upgrade-qt6-platformsupport-private-develsuse-upgrade-qt6-platformtheme-gtk3suse-upgrade-qt6-platformtheme-xdgdesktopportalsuse-upgrade-qt6-printsupport-cupssuse-upgrade-qt6-printsupport-develsuse-upgrade-qt6-printsupport-private-develsuse-upgrade-qt6-sql-develsuse-upgrade-qt6-sql-mysqlsuse-upgrade-qt6-sql-postgresqlsuse-upgrade-qt6-sql-private-develsuse-upgrade-qt6-sql-sqlitesuse-upgrade-qt6-sql-unixodbcsuse-upgrade-qt6-test-develsuse-upgrade-qt6-test-private-develsuse-upgrade-qt6-widgets-develsuse-upgrade-qt6-widgets-private-develsuse-upgrade-qt6-xml-develsuse-upgrade-qt6-xml-private-devel

References

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today