Ubuntu Security Update USN-8337-1: QtSvg vulnerabilities

[LinuxBot]

It was discovered that QtSvg incorrectly handled certain SVG images. An attacker could possibly use this issue to cause QtSvg to crash, resulting in a denial of service. This issue only affected Ubuntu 16.04 LTS. (CVE-2018-19869) It was discovered that QtSvg incorrectly handled certain SVG images. An attacker could use this issue to cause QtSvg to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 16.04 LTS and Ubuntu 20.04 LTS. (CVE-2021-3481, CVE-2021-28025, CVE-2021-45930) It was discovered that QtSvg incorrectly handled certain SVG images. An attacker could use this issue to cause QtSvg to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2023-32573)

Continue reading...