FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2025-08-29 03:34:00 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
e2f981f1-ad9e-11ee-8b55-4ccc6adda413QtNetwork -- potential buffer overflow

Andy Shaw reports:

A potential integer overflow has been discovered in Qt's HTTP2 implementation. If the HTTP2 implementation receives more than 4GiB in total headers, or more than 2GiB for any given header pair, then the internal buffers may overflow.


Discovery 2023-12-14
Entry 2024-01-07
qt5-network
< 5.15.12p148_1

qt6-base
< 6.6.1_2

CVE-2023-51714
https://www.qt.io/blog/security-advisory-potential-integer-overflow-in-qts-http2-implementation
2a11aa1e-83c7-11f0-b6e5-4ccc6adda413qt6-base -- DoS in QColorTransferGenericFunction

Andy Shaw reports:

When passing values outside of the expected range to QColorTransferGenericFunction it can cause a denial of service, for example, this can happen when passing a specifically crafted ICC profile to QColorSpace::fromICCProfile.


Discovery 2025-07-11
Entry 2025-08-28
qt6-base
< 6.9.2

CVE-2025-5992
https://www.qt.io/blog/security-advisory-recently-reported-denial-of-service-issue-in-qcolortransfergenericfunction-impacts-qt