CVE-2023-24607
HIGH7.5EPSS 0.35%qtbase-opensource-src - security update
發布日:2023/4/15修改日:2026/4/28
描述
Qt before 6.4.3 allows a denial of service via a crafted string when the SQL ODBC driver plugin is used and the size of SQLTCHAR is 4. The affected versions are 5.x before 5.15.13, 6.x before 6.2.8, and 6.3.x before 6.4.3.
受影響套件(3)
- Debian/qt6-basefrom 0, < 6.4.2+dfsg-7
- Debian/qtbase-opensource-srcfrom 0, < 5.15.2+dfsg-9+deb11u1
- Debian/qtbase-opensource-srcfrom 0, < 5.11.3+dfsg1-1+deb10u6
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH7.5 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |