Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-0295

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2015-0295
Last Modified 27 Mar 2015 09:59:49
Published 25 Mar 2015 10:59:01
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2015-0295

Summary

The BMP decoder in QtGui in QT before 5.5 does not properly calculate the masks used to extract the color components, which allows remote attackers to cause a denial of service (divide-by-zero and crash) via a crafted BMP file.

Vulnerable Systems

Operating System

  • Novell Opensuse 13.1

Application

  • Digia Qt 5.4.1


References

MLIST - [Announce] 20150227 Qt Security Advisory: DoS vulnerability in the BMP image handler

SUSE - openSUSE-SU-2015:0573

FEDORA - FEDORA-2015-2901

FEDORA - FEDORA-2015-2886

FEDORA - FEDORA-2015-2869

FEDORA - FEDORA-2015-2866

FEDORA - FEDORA-2015-2897

FEDORA - FEDORA-2015-2895


Last Updated: 27 May 2016 11:08:14