Improper Input Validation in qt5-srpm-macros | CVE-2018-19869

Q: How to fix?

Upgrade AlmaLinux:8 qt5-srpm-macros to version 0:5.12.5-3.el8 or higher. This issue was patched in ALSA-2020:1665 .

Threat Intelligence

Not Defined

0.74% (81^st percentile)

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications

Snyk Learn

Learn about Improper Input Validation vulnerabilities in an interactive lesson.

Start learning

Snyk IDSNYK-ALMALINUX8-QT5SRPMMACROS-5645953
published28 May 2023
disclosed28 Apr 2020

Report a new vulnerability Found a mistake?

Introduced: 28 Apr 2020

CVE-2018-19869 (opens in a new tab) CWE-20 (opens in a new tab)

How to fix?

Upgrade AlmaLinux:8 qt5-srpm-macros to version 0:5.12.5-3.el8 or higher.
This issue was patched in ALSA-2020:1665.

NVD Description

Note: Versions mentioned in the description apply only to the upstream qt5-srpm-macros package and not the qt5-srpm-macros package as distributed by AlmaLinux. See How to fix? for AlmaLinux:8 relevant fixed versions and status.

An issue was discovered in Qt before 5.11.3. A malformed SVG image causes a segmentation fault in qsvghandler.cpp.

Improper Input Validation Affecting qt5-srpm-macros package, versions <0:5.12.5-3.el8

Severity