CVE-2023-37369

描述

In Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.2, there can be an application crash in QXmlStreamReader via a crafted XML string that triggers a situation in which a prefix is greater than a length.

受影響套件(3)

• Debian/qt6-basefrom 0
• Debian/qtbase-opensource-srcfrom 0, < 5.15.2+dfsg-9+deb11u1
• Debian/qtbase-opensource-src-glesfrom 0

CVSS 分數

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2023-37369