Debian Qtdeclarative-Opensource-Src-Gles vulnerabilities

3 known vulnerabilities affecting debian/qtdeclarative-opensource-src-gles.

Total CVEs

3

CISA KEV

0

Public exploits

0

Exploited in wild

0

Severity breakdown

HIGH1LOW2

Vulnerabilities

Page 1 of 1

CVE-2025-12385HIGHCVSS 8.7fixed in qtdeclarative-opensource-src 5.15.17+dfsg-4 (forky)2025

CVE-2025-12385 [HIGH] CVE-2025-12385: qt6-declarative - Allocation of Resources Without Limits or Throttling, Improper Validation of Spe... Allocation of Resources Without Limits or Throttling, Improper Validation of Specified Quantity in Input vulnerability in The Qt Company Qt on Windows, MacOS, Linux, iOS, Android, x86, ARM, 64 bit, 32 bit allows Excessive Allocation. This issue affects users of the Text component in Qt Quick. Missing validation of the width and height in the tag could cause

CVE-2022-40983LOWCVSS 8.8fixed in qt6-declarative 6.4.2+dfsg~rc1-2 (bookworm)2022

CVE-2022-40983 [HIGH] CVE-2022-40983: qt6-declarative - An integer overflow vulnerability exists in the QML QtScript Reflect API of Qt P... An integer overflow vulnerability exists in the QML QtScript Reflect API of Qt Project Qt 6.3.2. A specially-crafted javascript code can trigger an integer overflow during memory allocation, which can lead to arbitrary code execution. Target application would need to access a malicious web page to trigger this vulnerability. Scope: local bookworm: resolved (

CVE-2022-43591LOWCVSS 8.8fixed in qt6-declarative 6.4.2+dfsg~rc1-2 (bookworm)2022

CVE-2022-43591 [HIGH] CVE-2022-43591: qt6-declarative - A buffer overflow vulnerability exists in the QML QtScript Reflect API of Qt Pro... A buffer overflow vulnerability exists in the QML QtScript Reflect API of Qt Project Qt 6.3.2. A specially-crafted javascript code can trigger an out-of-bounds memory access, which can lead to arbitrary code execution. Target application would need to access a malicious web page to trigger this vulnerability. Scope: local bookworm: resolved (fixed in 6.4.2+d