CVE-2016-10040
published 2017-03-07CVE-2016-10040: Stack-based buffer overflow in QXmlSimpleReader in Qt 4.8.5 allows remote attackers to cause a denial of service (application crash) via a xml file with…
PriorityP422medium5.5CVSS 3.0
AVLACLPRNUIRSUCNINAH
EPSS
1.92%
77.4th percentile
Stack-based buffer overflow in QXmlSimpleReader in Qt 4.8.5 allows remote attackers to cause a denial of service (application crash) via a xml file with multiple nested open tags.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | qtbase-opensource-src | < qtbase-opensource-src 5.2.0+dfsg-7 (bookworm) | qtbase-opensource-src 5.2.0+dfsg-7 (bookworm) |
| qt | qxmlsimplereader | — | — |
CVSS provenance
nvdv3.05.5MEDIUMCVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:N/A:P
osv5.5MEDIUM
vendor_debian5.5MEDIUM
vendor_redhat5.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-6ppq-w2qp-6rhq: Stack-based buffer overflow in QXmlSimpleReader in Qt 4
ghsa_unreviewed·2022-05-17
CVE-2016-10040 [MEDIUM] CWE-119 GHSA-6ppq-w2qp-6rhq: Stack-based buffer overflow in QXmlSimpleReader in Qt 4
Stack-based buffer overflow in QXmlSimpleReader in Qt 4.8.5 allows remote attackers to cause a denial of service (application crash) via a xml file with multiple nested open tags.
OSV
CVE-2016-10040: Stack-based buffer overflow in QXmlSimpleReader in Qt 4
osv·2017-03-07·CVSS 5.5
CVE-2016-10040 [MEDIUM] CVE-2016-10040: Stack-based buffer overflow in QXmlSimpleReader in Qt 4
Stack-based buffer overflow in QXmlSimpleReader in Qt 4.8.5 allows remote attackers to cause a denial of service (application crash) via a xml file with multiple nested open tags.
Red Hat
qt: stack overflow in QXmlSimpleReader
vendor_redhat·2016-12-24·CVSS 5.5
CVE-2016-10040 [MEDIUM] CWE-776 qt: stack overflow in QXmlSimpleReader
qt: stack overflow in QXmlSimpleReader
Stack-based buffer overflow in QXmlSimpleReader in Qt 4.8.5 allows remote attackers to cause a denial of service (application crash) via a xml file with multiple nested open tags.
A stack overflow flaw was found in the way Qt parsed XML input with several nested opening tags. An application using Qt's QXmlSimpleReader to parse specially crafted XML input could crash.
Statement: Red Hat Product Security has rated this issue as having Low security impact. This issue is not currently planned to be addressed in future updates. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.
Package: qt (Red Hat Enterprise Linux 5) - Will not fix
Package: qt4 (Red Hat Enterprise Linux
Debian
CVE-2016-10040: qtbase-opensource-src - Stack-based buffer overflow in QXmlSimpleReader in Qt 4.8.5 allows remote attack...
vendor_debian·2016·CVSS 5.5
CVE-2016-10040 [MEDIUM] CVE-2016-10040: qtbase-opensource-src - Stack-based buffer overflow in QXmlSimpleReader in Qt 4.8.5 allows remote attack...
Stack-based buffer overflow in QXmlSimpleReader in Qt 4.8.5 allows remote attackers to cause a denial of service (application crash) via a xml file with multiple nested open tags.
Scope: local
bookworm: resolved (fixed in 5.2.0+dfsg-7)
bullseye: resolved (fixed in 5.2.0+dfsg-7)
forky: resolved (fixed in 5.2.0+dfsg-7)
sid: resolved (fixed in 5.2.0+dfsg-7)
trixie: resolved (fixed in 5.2.0+dfsg-7)
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2016-10040 qt5-qtbase: qt: stack overflow in QXmlSimpleReader [fedora-all]
bugzilla·2017-01-02·CVSS 5.5
CVE-2016-10040 [MEDIUM] CVE-2016-10040 qt5-qtbase: qt: stack overflow in QXmlSimpleReader [fedora-all]
CVE-2016-10040 qt5-qtbase: qt: stack overflow in QXmlSimpleReader [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported version
Bugzilla
CVE-2016-10040 mingw-qt5-qtbase: qt: stack overflow in QXmlSimpleReader [fedora-all]
bugzilla·2017-01-02·CVSS 5.5
CVE-2016-10040 [MEDIUM] CVE-2016-10040 mingw-qt5-qtbase: qt: stack overflow in QXmlSimpleReader [fedora-all]
CVE-2016-10040 mingw-qt5-qtbase: qt: stack overflow in QXmlSimpleReader [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported v
Bugzilla
CVE-2016-10040 mingw-qt: qt: stack overflow in QXmlSimpleReader [epel-7]
bugzilla·2017-01-02·CVSS 5.5
CVE-2016-10040 [MEDIUM] CVE-2016-10040 mingw-qt: qt: stack overflow in QXmlSimpleReader [epel-7]
CVE-2016-10040 mingw-qt: qt: stack overflow in QXmlSimpleReader [epel-7]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of epel-7.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
Discussion:
All mingw-* EPEL 7 components have been retired.
Bugzilla
CVE-2016-10040 qt: stack overflow in QXmlSimpleReader [fedora-all]
bugzilla·2017-01-02·CVSS 5.5
CVE-2016-10040 [MEDIUM] CVE-2016-10040 qt: stack overflow in QXmlSimpleReader [fedora-all]
CVE-2016-10040 qt: stack overflow in QXmlSimpleReader [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported versions of Fedora.
Bugzilla
CVE-2016-10040 mingw-qt: qt: stack overflow in QXmlSimpleReader [fedora-all]
bugzilla·2017-01-02·CVSS 5.5
CVE-2016-10040 [MEDIUM] CVE-2016-10040 mingw-qt: qt: stack overflow in QXmlSimpleReader [fedora-all]
CVE-2016-10040 mingw-qt: qt: stack overflow in QXmlSimpleReader [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported versions
Bugzilla
CVE-2016-10040 qt3: qt: stack overflow in QXmlSimpleReader [fedora-all]
bugzilla·2017-01-02·CVSS 5.5
CVE-2016-10040 [MEDIUM] CVE-2016-10040 qt3: qt: stack overflow in QXmlSimpleReader [fedora-all]
CVE-2016-10040 qt3: qt: stack overflow in QXmlSimpleReader [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported versions of Fe
Bugzilla
CVE-2016-10040 qt5-qtbase: qt: stack overflow in QXmlSimpleReader [epel-all]
bugzilla·2017-01-02·CVSS 5.5
CVE-2016-10040 [MEDIUM] CVE-2016-10040 qt5-qtbase: qt: stack overflow in QXmlSimpleReader [epel-all]
CVE-2016-10040 qt5-qtbase: qt: stack overflow in QXmlSimpleReader [epel-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of epel-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported versions of
Bugzilla
CVE-2016-10040 qt: stack overflow in QXmlSimpleReader
bugzilla·2017-01-02·CVSS 5.5
CVE-2016-10040 [MEDIUM] CVE-2016-10040 qt: stack overflow in QXmlSimpleReader
CVE-2016-10040 qt: stack overflow in QXmlSimpleReader
A stack overflow (stack exhaustion) flaw was found in the way Qt parsed XML input with several nested opening tags. An application using Qt's QXmlSimpleReader to parse specially crafted XML input could crash.
Discussion:
External References:
http://seclists.org/oss-sec/2016/q4/745
---
Created mingw-qt tracking bugs for this issue:
Affects: epel-7 [bug 1409604]
Affects: fedora-all [bug 1409601]
Created mingw-qt5-qtbase tracking bugs for this issue:
Affects: fedora-all [bug 1409599]
Created qt tracking bugs for this issue:
Affects: fedora-all [bug 1409602]
Created qt3 tracking bugs for this issue:
Affects: fedora-all [bug 1409603]
Created qt5-qtbase tracking bugs for this issue:
Affects: epel-all [bug 1409598]
Affects:
http://www.openwall.com/lists/oss-security/2016/12/24/2http://www.openwall.com/lists/oss-security/2017/01/14/4http://www.securityfocus.com/bid/95113https://bugzilla.redhat.com/show_bug.cgi?id=1409597http://www.openwall.com/lists/oss-security/2016/12/24/2http://www.openwall.com/lists/oss-security/2017/01/14/4http://www.securityfocus.com/bid/95113https://bugzilla.redhat.com/show_bug.cgi?id=1409597
2017-03-07
Published