CNNVD-202512-345 Information
Dec 03, 2025
cve
CNNVD ID
CNNVD-202512-345
Related CVE
- CNNVD Published: 2025-12-03
Description (Chinese)
Qt是Qt开源的一个跨平台的应用程序开发框架。 Qt 5.0.0版本至6.5.10版本、6.6.0版本至6.8.5版本和6.9.0版本至6.10.0版本存在安全漏洞,该漏洞源于缺少输入验证,可能导致资源过度分配。
Description (English)
Qt is a cross-platform application development framework for Qt Open Source. Qt 5.0.0 to 6.5.10, 6.6.0 to 6.8.5 and 6.9.0 to 6.1.0. There is a security loophole, which stems from a lack of input validation and may lead to overallocation of resources.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Qt
Published
2025-12-03
Last Modified
2026-02-24
References
https://codereview.qt-project.org/c/qt/qtdeclarative/+/687239 https://codereview.qt-project.org/c/qt/qtdeclarative/+/687766 https://access.redhat.com/security/cve/cve-2025-12385 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-12385
Patch
https://codereview.qt-project.org/c/qt/qtdeclarative/+/687766
Share on: