ALT-PU-2020-2582-2

Package update qt5-speech in branch sisyphus

Version5.15.0-alt1

Published2026-02-04

Max severityHIGH

Severity:

Closed issues (3)

HIGH7.5

Уязвимость компонента WebSocket кроссплатформенного фреймворка для разработки программного обеспечения Qt, позволяющая нарушителю вызвать отказ в обслуживании

Published: 2023-08-31Modified: 2025-09-05

CVSS 3.xHIGH 7.5

CVSS:3.x/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS 2.0HIGH 7.8

CVSS:2.0/AV:N/AC:L/Au:N/C:N/I:N/A:C

References

CVE-2018-21035

HIGH7.5

In Qt through 5.14.1, the WebSocket implementation accepts up to 2GB for frames and 2GB for messages. Smaller limits cannot be configured. This makes it easier for attackers to cause a denial of service (memory consumption).

Published: 2020-02-28Modified: 2024-11-21

CVSS 2.0MEDIUM 5.0

CVSS:2.0/AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS 3.xHIGH 7.5

CVSS:3.x/CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References

MEDIUM5.7

Out of bounds write in Intel(R) PROSet/Wireless WiFi products on Windows 10 may allow an authenticated user to potentially enable denial of service via local access.

Published: 2020-11-23Modified: 2024-11-21

CVSS 2.0LOW 2.7

CVSS:2.0/AV:A/AC:L/Au:S/C:N/I:N/A:P

CVSS 3.xMEDIUM 5.7

CVSS:3.x/CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

References