CVE-2015-0295 (retired)

Priority
Description
The BMP decoder in QtGui in QT before 5.5 does not properly calculate the
masks used to extract the color components, which allows remote attackers
to cause a denial of service (divide-by-zero and crash) via a crafted BMP
file.
Assigned-to
mdeslaur
Notes
mdeslaurdebian released 4:4.8.6+git64-g5dc8b2b+dfsg-3 with this fix,
but ubuntu's package was based on an unreleased snapshot and
didn't include the patch.
Package
Upstream:released (5.4.1+dfsg-2)
Patches:
Upstream:https://codereview.qt-project.org/106929
More Information

Updated: 2019-10-09 07:51:53 UTC (commit 33aea848a182c0afcd0a3f927a01a7ecd9a061ee)