Qt through 5.14 allows an exponential XML entity expansion attack via a crafted SVG document that is mishandled in QXmlStreamReader, a related issue to CVE-2003-1564.
Software | From | Fixed in |
---|---|---|
fedoraproject / fedora | 31 | 31.x |
fedoraproject / fedora | 32 | 32.x |
qt / qt | 5.5.0 | 5.12.8 |