ALSA-2025:22361

See a problem?

Import Source

https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2025:22361.json

JSON Data

https://api.osv.dev/v1/vulns/ALSA-2025:22361

Related

CVE-2025-11277

Published

2025-12-01T00:00:00Z

Modified

2026-02-04T02:28:36.716767Z

Summary

Moderate: qt6-qtquick3d security update

Details

The Qt 6 Quick3D library.

Security Fix(es):

assimp: Open Asset Import Library Assimp Q3DLoader.cpp InternReadFile heap-based overflow (CVE-2025-11277)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References

Affected packages

AlmaLinux:10 / qt6-qtquick3d

Package

Name: qt6-qtquick3d
Purl: pkg:rpm/almalinux/qt6-qtquick3d

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

6.9.1-1.el10_1.1

Database specific

source

"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2025:22361.json"

AlmaLinux:10 / qt6-qtquick3d-devel

Package

Name: qt6-qtquick3d-devel
Purl: pkg:rpm/almalinux/qt6-qtquick3d-devel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

6.9.1-1.el10_1.1

Database specific

source

"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2025:22361.json"

AlmaLinux:10 / qt6-qtquick3d-examples

Package

Name: qt6-qtquick3d-examples
Purl: pkg:rpm/almalinux/qt6-qtquick3d-examples

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

6.9.1-1.el10_1.1

Database specific

source

"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2025:22361.json"