Lucene search
Redhat.comRH:CVE-2023-43114HistorySep 28, 2023 - 6:54 a.m.
CVE-2023-43114
2023-09-2806:54:21
redhat.com
access.redhat.com
27
qt
windows
gdi font engine
application crashes
length checks
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
0.0004 Low
EPSS
Percentile
12.8%
An issue was discovered in Qt on Windows. When using the GDI font engine, if a corrupted font is loaded via QFontDatabase::addApplicationFont{FromData], then it can cause the application to crash because of missing length checks.
Related
osv
osv
CVE-2023-43114
2023-09-18 07:15:38
prion
prion
Design/Logic Flaw
2023-09-18 07:15:00
nvd
nvd
CVE-2023-43114
2023-09-18 07:15:38
debiancve
debiancve
CVE-2023-43114
2023-09-18 07:15:38
ubuntucve
ubuntucve
CVE-2023-43114
2023-09-18 00:00:00
cve
cve
CVE-2023-43114
2023-09-18 07:15:38
qt
qt
Security: Update regarding CVE-2023-43114
2023-10-17 00:00:00
Security advisory: Recently reported Chromium "Type confusion" issue impacts Qt WebEngine
2022-04-04 00:00:00
Two Qt security advisories: GDI Font Engine & WebP image format
2023-09-22 00:00:00
cvelist
cvelist
CVE-2023-43114
2023-09-18 00:00:00
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
0.0004 Low
EPSS
Percentile
12.8%
Related for RH:CVE-2023-43114