suse · CVE-2025-5992

Quick triage

Priority: medium Published: 2025-07-12 06:55:45 UTC Updated: 2026-03-05 01:30:44 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2025-5992 severity moderate: SUSE including 256 source package names (libQt5Bootstrap-devel-static, libQt5Bootstrap-devel-static-32bit, …), 1449 product×package rows across 36 product lines (SLES-LTSS-TERADATA 15 SP2, SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS, … (36 product lines)): Known Not Affected 1339, Fixed 110.

Description:

When passing values outside of the expected range to QColorTransferGenericFunction it can cause a denial of service, for example, this can happen when passing a specifically crafted ICC profile to QColorSpace::fromICCProfile.This issue affects Qt from 6.6.0 through 6.8.3, from 6.9.0 through 6.9.1. This is fixed in 6.8.4 and 6.9.2.

cvelogic Threat Intelligence