| Bug | bookworm | trixie | sid | Description |
|---|
| CVE-2025-30348 | vulnerable (no DSA) | fixed | fixed | encodeText in QDom in Qt before 6.8.0 has a complex algorithm involvin ... |
| CVE-2025-5992 | vulnerable (no DSA) | vulnerable | fixed | When passing values outside of the expected range to QColorTransferGen ... |
| CVE-2025-5455 | vulnerable (no DSA) | fixed | fixed | An issue was found in the private API function qDecodeDataUrl() in QtC ... |
| CVE-2024-39936 | vulnerable (no DSA) | fixed | fixed | An issue was discovered in HTTP2 in Qt before 5.15.18, 6.x before 6.2. ... |
| CVE-2024-25580 | vulnerable (no DSA) | fixed | fixed | An issue was discovered in gui/util/qktxhandler.cpp in Qt before 5.15. ... |
| CVE-2023-51714 | vulnerable (no DSA) | fixed | fixed | An issue was discovered in the HTTP2 implementation in Qt before 5.15. ... |
| CVE-2023-38197 | vulnerable (no DSA, ignored) | fixed | fixed | An issue was discovered in Qt before 5.15.15, 6.x before 6.2.10, and 6 ... |
| CVE-2023-37369 | vulnerable (no DSA) | fixed | fixed | In Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before ... |
| CVE-2023-34410 | vulnerable (no DSA) | fixed | fixed | An issue was discovered in Qt before 5.15.15, 6.x before 6.2.9, and 6. ... |
| Bug | Description |
|---|
| CVE-2025-5991 | There is a "Use After Free" vulnerability in Qt's QHttp2ProtocolHandle ... |
| CVE-2025-4211 | Improper Link Resolution Before File Access ('Link Following') vulnera ... |
| CVE-2025-3512 | There is a Heap-based Buffer Overflow vulnerability in QTextMarkdownIm ... |
| CVE-2024-30161 | In Qt 6.5.4, 6.5.5, and 6.6.2, QNetworkReply header data might be acce ... |
| CVE-2023-43114 | An issue was discovered in Qt before 5.15.16, 6.x before 6.2.10, and 6 ... |
| CVE-2023-33285 | An issue was discovered in Qt 5.x before 5.15.14, 6.x before 6.2.9, an ... |
| CVE-2023-32763 | An issue was discovered in Qt before 5.15.15, 6.x before 6.2.9, and 6. ... |
| CVE-2023-32762 | An issue was discovered in Qt before 5.15.14, 6.x before 6.2.9, and 6. ... |
| CVE-2023-24607 | Qt before 6.4.3 allows a denial of service via a crafted string when t ... |
| CVE-2022-25634 | Qt through 5.15.8 and 6.x through 6.2.3 can load system library files ... |
| CVE-2022-25255 | In Qt 5.9.x through 5.15.x before 5.15.9 and 6.x before 6.2.4 on Linux ... |
| CVE-2020-23884 | A buffer overflow in Nomacs v3.15.0 allows attackers to cause a denial ... |