SUSE-SU-2023:2981-1
- Source
- https://www.suse.com/support/update/announcement/2023/suse-su-20232981-1/
- Import Source
- https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2023:2981-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/SUSE-SU-2023:2981-1
- Upstream
- Related
- Published
- 2023-07-26T07:59:21Z
- Modified
- 2025-05-02T04:32:01.264080Z
- Summary
- Security update for libqt5-qtsvg
- Details
-
This update for libqt5-qtsvg fixes the following issues:
- CVE-2021-45930: Fixed an out-of-bounds write that may have lead to a denial-of-service (bsc#1196654).
- CVE-2023-32573: Fixed missing initialization of QtSvg QSvgFont m_unitsPerEm variable (bsc#1211298).
- References
Affected packages
openSUSE:Leap 15.4
libqt5-qtsvg
Package
- Name
- libqt5-qtsvg
- Purl
- pkg:rpm/opensuse/libqt5-qtsvg&distro=openSUSE%20Leap%2015.4
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed5.15.2+kde16-150400.3.3.1
Ecosystem specific
{
"binaries": [
{
"libqt5-qtsvg-private-headers-devel": "5.15.2+kde16-150400.3.3.1",
"libQt5Svg5-32bit": "5.15.2+kde16-150400.3.3.1",
"libqt5-qtsvg-devel-32bit": "5.15.2+kde16-150400.3.3.1",
"libqt5-qtsvg-examples": "5.15.2+kde16-150400.3.3.1",
"libqt5-qtsvg-devel": "5.15.2+kde16-150400.3.3.1",
"libQt5Svg5": "5.15.2+kde16-150400.3.3.1"
}
]
}