CVE-2025-10729 — Use After Free in QT Company QT

CWE-416 — Use After Free7 documents7 sources

Severity

9.4CRITICALNVD

EPSS

0.0%

top 94.58%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

THE QT Company QT Debian Qt6-svg Debian Qtsvg-opensource-src +2 more

Timeline

PublishedOct 3

Latest updateOct 14

Description

The module will parse a node which is not a child of a structural node. The node will be deleted after creation but might be accessed later leading to a use after free.

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/S:P

Affected Packages5 packages

▶CVEListV5the_qt_company/qt6.7.0 — 6.8.4+1

▶debiandebian/qt6-svg

▶debiandebian/qtsvg-opensource-src

▶msrcmsrc/azl3_qtsvg_6.6.1-2_on_azure_linux_3.0

▶msrcmsrc/cbl2_qt5-qtsvg_5.12.11-6_on_cbl_mariner_2.0

🔴Vulnerability Details

OSV

CVE-2025-10729: The module will parse a node which is not a child of a structural node↗2025-10-03

▶

GHSA

GHSA-cprv-rgr4-v7vh: The module will parse a node which is not a child of a structural node↗2025-10-03

▶

📋Vendor Advisories

Microsoft

Use-after-free vulnerability in Qt SVG qsvghandler.cpp allows denial of service via crafted SVG↗2025-10-14

▶

Red Hat

qtsvg: Use-after-free vulnerability in Qt SVG↗2025-10-03

▶

Debian

CVE-2025-10729: qt6-svg - The module will parse a <pattern> node which is not a child of a structural node...↗2025

▶

🕵️Threat Intelligence

Bleepingcomputer

Microsoft October 2025 Patch Tuesday fixes 6 zero-days, 172 flaws↗2025-10-14

▶