VuXML: qt6-webengine -- Multiple vulnerabilities

Affected packages

qt6-pdf

6.8.3

qt6-webengine

6.8.3

Details

VuXML ID	7cb6642c-0c5a-11f0-8688-4ccc6adda413
Discovery	2025-02-20
Entry	2025-03-29

VuXML ID

7cb6642c-0c5a-11f0-8688-4ccc6adda413

Discovery

2025-02-20

Entry

2025-03-29

Qt qtwebengine-chromium repo reports:

Backports for 11 security bugs in Chromium:

CVE-2024-11477: 7-Zip Zstd decompression integer underflow

CVE-2025-0762: Use after free in DevTools

CVE-2025-0996: Inappropriate implementation in Browser UI

CVE-2025-0998: Out of bounds memory access in V8

CVE-2025-0999: Heap buffer overflow in V8

CVE-2025-1006: Use after free in Network

CVE-2025-1426: Heap buffer overflow in GPU

CVE-2025-1918: Out of bounds read in Pdfium

CVE-2025-1919: Out of bounds read in Media

CVE-2025-1921: Inappropriate implementation in Media

CVE-2025-2036: Use after free in Inspector

[source]

References

CVE Name

CVE-2024-11477

CVE Name

CVE-2025-0762

CVE Name

CVE-2025-0996

CVE Name

CVE-2025-0998

CVE Name

CVE-2025-0999

CVE Name

CVE-2025-1006

CVE Name

CVE-2025-1426

CVE Name

CVE-2025-1918

CVE Name

CVE-2025-1919

CVE Name

CVE-2025-1921

CVE Name

CVE-2025-2036

URL

https://code.qt.io/cgit/qt/qtwebengine-chromium.git/log/?h=122-based