Qt QtBase Module 'qbmphandler.cpp' Remote Denial of Service Vulnerability

Bugtraq ID:	106327
Class:	Design Error
CVE:	CVE-2018-19870
Remote:	Yes
Local:	No
Published:	Dec 06 2018 12:00AM
Updated:	Dec 06 2018 12:00AM
Credit:	The vendor reported this issue.
Vulnerable:	Redhat Enterprise Linux 7 Digia Qt 5.11.2 Digia Qt 5.11 Digia Qt 5.10 Digia Qt 5.9 Digia Qt 5.8 Digia Qt 5.7 Digia Qt 5.6 Digia Qt 5.5 Digia Qt 5.4.1 Digia Qt 5.0.1 Digia Qt 4.8.6 Digia Qt 4.8.5 Digia Qt 4.6.4 Digia Qt 4.4.2 Digia Qt 4.4 Digia Qt 3.3.5 Digia Qt 3.3.4 Digia Qt 5.4 Digia Qt 5.3.0 Digia Qt 5.3 Digia Qt 5.2.0 Digia Qt 5.2 Digia Qt 5.1.0 Digia Qt 5.1 Digia Qt 5.0.2 Digia Qt 5.0.0 Digia Qt 4.8.4 Digia Qt 4.8.3 Digia Qt 4.8.2 Digia Qt 4.8.1 Digia Qt 4.8.0 Digia Qt 4.8 Digia Qt 4.7.6 Digia Qt 4.7.5 Digia Qt 4.7.4 Digia Qt 4.7.3 Digia Qt 4.7.2 Digia Qt 4.7.1 Digia Qt 4.7.0 Digia Qt 4.6.5 Digia Qt 4.6.3 Digia Qt 4.6.2 Digia Qt 4.6.1 Digia Qt 4.6.0 Digia Qt 4.5.3 Digia Qt 4.5.2 Digia Qt 4.5.1 Digia Qt 4.5.0 Digia Qt 4.4.3 Digia Qt 4.4.1 Digia Qt 4.3.5 Digia Qt 4.3.4 Digia Qt 4.3.3 Digia Qt 4.3.2 Digia Qt 4.3.1 Digia Qt 4.3.0 Digia Qt 4.2.3 Digia Qt 4.2.1 Digia Qt 4.2.0 Digia Qt 4.2 Digia Qt 4.1.5 Digia Qt 4.1.4 Digia Qt 4.1.3 Digia Qt 4.1.2 Digia Qt 4.1.1 Digia Qt 4.1.0 Digia Qt 4.0.1 Digia Qt 4.0.0 Digia Qt 3.3.6 Digia Qt 3.3.3 Digia Qt 3.3.2 Digia Qt 3.3.1 Digia Qt 3.3.0 Digia Qt 2.0.2 Digia Qt 2.0.1 Digia Qt 2.0.0 Digia Qt 1.45 Digia Qt 1.44 Digia Qt 1.43 Digia Qt 1.42 Digia Qt 1.41
Not Vulnerable:	Digia Qt 5.12 Digia Qt 5.11.3

Qt QtBase Module 'qbmphandler.cpp' Remote Denial of Service Vulnerability

Qt is prone to a remote denial-of-service vulnerability.

An attacker can exploit this issue to cause the application to crash, denying service to legitimate users.

Versions prior to Qt 5.11.3 are vulnerable.