Bug 1118598 (CVE-2018-19871) - VUL-1: CVE-2018-19871: libqt5-qtimageformats: QImage: QTgaFile CPU exhaustion
Summary: VUL-1: CVE-2018-19871: libqt5-qtimageformats: QImage: QTgaFile CPU exhaustion
Status: RESOLVED FIXED
Alias: CVE-2018-19871
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents (show other bugs)
Version: unspecified
Hardware: Other Other
: P4 - Low : Normal
Target Milestone: ---
Assignee: Security Team bot
QA Contact: Security Team bot
URL: https://smash.suse.de/issue/220283/
Whiteboard: ibs:running:9674:moderate CVSSv3:SUSE...
Keywords:
Depends on:
Blocks:
 
Reported: 2018-12-06 08:38 UTC by Alexander Bergmann
Modified: 2024-05-07 09:28 UTC (History)
2 users (show)

See Also:
Found By: ---
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Alexander Bergmann 2018-12-06 08:38:20 UTC 
CVE-2018-19871, Qt Imageformats: QImage: QTgaFile CPU exhaustion

TGA handler: check for out of range image size

Make the decoder fail early to avoid spending time and memory on
attempting to decode a corrupt image file.

Change-Id: Iac35e72de743f412a65d11c58fe7faa275dc4e41
Reviewed-by: Lars Knoll <lars.knoll@qt.io>

Upstream fix:
https://codereview.qt-project.org/#/c/237761/
Comment 1 Alexander Bergmann 2018-12-06 16:50:30 UTC 
libqt4: src/plugins/imageformats/tga/qtgafile.cpp
libqt5-qtimageformats: src/plugins/imageformats/tga/qtgafile.cpp
Comment 3 Max Lin 2018-12-17 09:25:03 UTC 
MRs has been accepted, back to security team. BTW I'm not libqt4 maintainer, if you need a libqt5 fix, please re-assign this to the right person or another bugreport.
Comment 4 Swamp Workflow Management 2019-04-02 16:13:39 UTC 
openSUSE-SU-2019:1115-1: An update that fixes one vulnerability is now available.

Category: security (moderate)
Bug References: 1118598
CVE References: CVE-2018-19871
Sources used:
openSUSE Leap 15.0 (src):    libqt5-qtimageformats-5.9.4-lp150.2.3.2

*** NOTE: This information is not intended to be used for external
    communication, because this may only be a partial fix.
    If you have questions please reach out to maintenance coordination.
Comment 5 Swamp Workflow Management 2020-10-14 16:18:45 UTC 
SUSE-SU-2020:2923-1: An update that fixes one vulnerability is now available.

Category: security (moderate)
Bug References: 1118598
CVE References: CVE-2018-19871
JIRA References: 
Sources used:
SUSE Linux Enterprise Server 12-SP5 (src):    libqt5-qtimageformats-5.6.2-3.3.110

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 6 Thomas Leroy 2024-05-07 09:28:03 UTC 
All done, closing.