Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-0295


Vulnerability Score 5.0 5.0
CVE Id CVE-2015-0295
Last Modified 27 Mar 2015 09:59:49
Published 25 Mar 2015 10:59:01
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



The BMP decoder in QtGui in QT before 5.5 does not properly calculate the masks used to extract the color components, which allows remote attackers to cause a denial of service (divide-by-zero and crash) via a crafted BMP file.

Vulnerable Systems

Operating System

  • Novell Opensuse 13.1


  • Digia Qt 5.4.1


MLIST - [Announce] 20150227 Qt Security Advisory: DoS vulnerability in the BMP image handler

SUSE - openSUSE-SU-2015:0573

FEDORA - FEDORA-2015-2901

FEDORA - FEDORA-2015-2886

FEDORA - FEDORA-2015-2869

FEDORA - FEDORA-2015-2866

FEDORA - FEDORA-2015-2897

FEDORA - FEDORA-2015-2895

Last Updated: 27 May 2016 11:08:14