FreeBSD : qt4-gui, qt5-gui -- DoS vulnerability in the BMP image handler (c9c3374d-c2c1-11e4-b236-5453ed2e2b49)

This script is Copyright (C) 2015-2017 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing one or more security-related
updates.

Description :

Richard J. Moore reports :

The builtin BMP decoder in QtGui prior to Qt 5.5 contained a bug that
would lead to a division by zero when loading certain corrupt BMP
files. This in turn would cause the application loading these hand
crafted BMPs to crash.

See also :

http://www.nessus.org/u?01a12227
http://www.nessus.org/u?1c421d8e

Solution :

Update the affected packages.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P)

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 81619 ()

Bugtraq ID:

CVE ID: CVE-2015-0295

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now