INFSA-2025:20963: qt5-qt3d security update
Information about definition
Identificator: INFSA-2025:20963
Type: security
Release date: 2025-12-01 14:06:14 UTC
Information about package
Qt 3D provides functionality for near-realtime simulation systems with support for 2D and 3D rendering in both Qt C++ and Qt Quick applications).
Vulnerabilities description
- CVE-2025-11277
Open Asset Import Library (assimp) is vulnerable to a denial of service, caused by a heap-based buffer-overflow in Q3DImporter::InternReadFile.
Severity level
| CVE | Score CVSS 2.0 | Score CVSS 3.x | Score CVSS 4.0 |
|---|---|---|---|
|
NIST — CVE-2025-11277
|
no information | 6.1 | no information |
Updated packages
Preparing to download...