FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  456043
Date:      2017-12-11
Time:      14:53:31Z
Committer: tijl

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
5713bfda-e27d-11e4-b2ce-5453ed2e2b49qt4-imageformats, qt4-gui, qt5-gui -- Multiple Vulnerabilities in Qt Image Format Handling

Richard J. Moore reports:

Due to two recent vulnerabilities identified in the built-in image format handling code, it was decided that this area required further testing to determine if further issues remained. Fuzzing using afl-fuzz located a number of issues in the handling of BMP, ICO and GIF files. The issues exposed included denial of service and buffer overflows leading to heap corruption. It is possible the latter could be used to perform remote code execution.


Discovery 2015-04-12
Entry 2015-04-14
qt4-imageformats
lt 4.8.6_3

qt4-gui
lt 4.8.6_5

qt5-gui
lt 5.4.1_1

http://lists.qt-project.org/pipermail/announce/2015-April/000067.html
CVE-2015-1858
CVE-2015-1859
CVE-2015-1860