CVE-2021-3481

A flaw was found in Qt. An out-of-bounds read vulnerability was found in QRadialFetchSimd in qt/qtbase/src/gui/painting/qdrawhelper_p.h in Qt/Qtbase. While rendering and displaying a crafted Scalable Vector Graphics (SVG) file this flaw may lead to an unauthorized memory access. The highest threat from this vulnerability is to data confidentiality and the application availability.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.1 HIGH
LOCAL
LOW
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 19%
Affected Products (NVD)
VendorProductVersion
qtqt
5.15.1
qtqt
6.0.0
qtqt
6.0.2
qtqt
6.2.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
qtsvg-opensource-src
bookworm
5.15.8-3
fixed
bullseye
5.15.2-3
fixed
buster
no-dsa
sid
5.15.15-2
fixed
trixie
5.15.13-2
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
qt4-x11
bionic
needs-triage
focal
dne
groovy
dne
hirsute
dne
impish
dne
jammy
dne
kinetic
dne
lunar
dne
mantic
dne
noble
dne
trusty
needs-triage
xenial
needs-triage
qtsvg-opensource-src
bionic
Fixed 5.9.5-0ubuntu1.1
released
focal
needs-triage
groovy
ignored
hirsute
ignored
impish
ignored
jammy
needs-triage
kinetic
ignored
lunar
ignored
mantic
ignored
noble
needs-triage
trusty
dne
xenial
needs-triage
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
libQt5Svg5
suse enterprise desktop 15 SP2
5.12.7-3.3.1
fixed
suse enterprise desktop 15 SP3
5.12.7-3.3.1
fixed
suse enterprise sap 12 SP5
5.6.2-3.6.1
fixed
suse enterprise sap 15 SP2
5.12.7-3.3.1
fixed
suse enterprise sap 15 SP3
5.12.7-3.3.1
fixed
suse enterprise server 12 SP3
5.6.2-3.6.1
fixed
suse enterprise server 12 SP5
5.6.2-3.6.1
fixed
suse enterprise server 15 SP2
5.12.7-3.3.1
fixed
suse enterprise server 15 SP3
5.12.7-3.3.1
fixed
libqt4
suse enterprise sap 12 SP5
4.8.7-8.16.1
fixed
suse enterprise server 12 SP3
4.8.7-8.16.1
fixed
suse enterprise server 12 SP5
4.8.7-8.16.1
fixed
libqt4-32bit
suse enterprise sap 12 SP5
4.8.7-8.16.1
fixed
suse enterprise server 12 SP3
4.8.7-8.16.1
fixed
suse enterprise server 12 SP5
4.8.7-8.16.1
fixed
libqt4-qt3support
suse enterprise sap 12 SP5
4.8.7-8.16.1
fixed
suse enterprise server 12 SP3
4.8.7-8.16.1
fixed
suse enterprise server 12 SP5
4.8.7-8.16.1
fixed
libqt4-qt3support-32bit
suse enterprise sap 12 SP5
4.8.7-8.16.1
fixed
suse enterprise server 12 SP3
4.8.7-8.16.1
fixed
suse enterprise server 12 SP5
4.8.7-8.16.1
fixed
libqt4-sql
suse enterprise sap 12 SP5
4.8.7-8.16.1
fixed
suse enterprise server 12 SP3
4.8.7-8.16.1
fixed
suse enterprise server 12 SP5
4.8.7-8.16.1
fixed
libqt4-sql-32bit
suse enterprise sap 12 SP5
4.8.7-8.16.1
fixed
suse enterprise server 12 SP3
4.8.7-8.16.1
fixed
suse enterprise server 12 SP5
4.8.7-8.16.1
fixed
libqt4-sql-mysql
suse enterprise sap 12 SP5
4.8.7-8.16.1
fixed
suse enterprise server 12 SP3
4.8.7-8.16.1
fixed
suse enterprise server 12 SP5
4.8.7-8.16.1
fixed
libqt4-sql-mysql-32bit
suse enterprise sap 12 SP5
4.8.7-8.16.1
fixed
suse enterprise server 12 SP5
4.8.7-8.16.1
fixed
suse enterprise workstation 12 SP5
4.8.7-8.16.1
fixed
libqt4-sql-postgresql
suse enterprise sap 12 SP5
4.8.7-8.16.1
fixed
suse enterprise server 12 SP5
4.8.7-8.16.1
fixed
suse enterprise workstation 12 SP5
4.8.7-8.16.1
fixed
libqt4-sql-postgresql-32bit
suse enterprise sap 12 SP5
4.8.7-8.16.1
fixed
suse enterprise server 12 SP5
4.8.7-8.16.1
fixed
suse enterprise workstation 12 SP5
4.8.7-8.16.1
fixed
libqt4-sql-sqlite
suse enterprise sap 12 SP5
4.8.7-8.16.1
fixed
suse enterprise server 12 SP3
4.8.7-8.16.1
fixed
suse enterprise server 12 SP5
4.8.7-8.16.1
fixed
libqt4-sql-sqlite-32bit
suse enterprise sap 12 SP5
4.8.7-8.16.1
fixed
suse enterprise server 12 SP5
4.8.7-8.16.1
fixed
suse enterprise workstation 12 SP5
4.8.7-8.16.1
fixed
libqt4-sql-unixODBC
suse enterprise sap 12 SP5
4.8.7-8.16.1
fixed
suse enterprise server 12 SP5
4.8.7-8.16.1
fixed
suse enterprise workstation 12 SP5
4.8.7-8.16.1
fixed
libqt4-sql-unixODBC-32bit
suse enterprise sap 12 SP5
4.8.7-8.16.1
fixed
suse enterprise server 12 SP5
4.8.7-8.16.1
fixed
suse enterprise workstation 12 SP5
4.8.7-8.16.1
fixed
libqt4-x11
suse enterprise sap 12 SP5
4.8.7-8.16.1
fixed
suse enterprise server 12 SP3
4.8.7-8.16.1
fixed
suse enterprise server 12 SP5
4.8.7-8.16.1
fixed
libqt4-x11-32bit
suse enterprise sap 12 SP5
4.8.7-8.16.1
fixed
suse enterprise server 12 SP3
4.8.7-8.16.1
fixed
suse enterprise server 12 SP5
4.8.7-8.16.1
fixed
libqt5-qtsvg-devel
suse enterprise desktop 15 SP2
5.12.7-3.3.1
fixed
suse enterprise desktop 15 SP3
5.12.7-3.3.1
fixed
suse enterprise sap 15 SP2
5.12.7-3.3.1
fixed
suse enterprise sap 15 SP3
5.12.7-3.3.1
fixed
suse enterprise server 15 SP2
5.12.7-3.3.1
fixed
suse enterprise server 15 SP3
5.12.7-3.3.1
fixed
qt4-x11-tools
suse enterprise sap 12 SP5
4.8.7-8.16.2
fixed
suse enterprise server 12 SP3
4.8.7-8.16.2
fixed
suse enterprise server 12 SP5
4.8.7-8.16.2
fixed
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
adwaita-qt5
RHEL 8
0:1.2.1-3.el8
fixed
libadwaita-qt5
RHEL 8
0:1.2.1-3.el8
fixed
python-qt5-rpm-macros
RHEL 8
0:5.15.0-2.el8
fixed
python3-pyqt5-sip
RHEL 8
0:4.19.24-2.el8
fixed
python3-qt5
RHEL 8
0:5.15.0-2.el8
fixed
python3-qt5-base
RHEL 8
0:5.15.0-2.el8
fixed
python3-qt5-devel
RHEL 8
0:5.15.0-2.el8
fixed
python3-sip-devel
RHEL 8
0:4.19.24-2.el8
fixed
python3-wx-siplib
RHEL 8
0:4.19.24-2.el8
fixed
qgnomeplatform
RHEL 8
0:0.7.1-2.el8
fixed
qt5-assistant
RHEL 8
0:5.15.2-3.el8
fixed
qt5-designer
RHEL 8
0:5.15.2-3.el8
fixed
qt5-devel
RHEL 8
0:5.15.2-1.el8
fixed
qt5-doctools
RHEL 8
0:5.15.2-3.el8
fixed
qt5-linguist
RHEL 8
0:5.15.2-3.el8
fixed
qt5-qdbusviewer
RHEL 8
0:5.15.2-3.el8
fixed
qt5-qt3d
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qt3d-devel
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qt3d-examples
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtbase
RHEL 8
0:5.15.2-3.el8
fixed
qt5-qtbase-common
RHEL 8
0:5.15.2-3.el8
fixed
qt5-qtbase-devel
RHEL 8
0:5.15.2-3.el8
fixed
qt5-qtbase-examples
RHEL 8
0:5.15.2-3.el8
fixed
qt5-qtbase-gui
RHEL 8
0:5.15.2-3.el8
fixed
qt5-qtbase-mysql
RHEL 8
0:5.15.2-3.el8
fixed
qt5-qtbase-odbc
RHEL 8
0:5.15.2-3.el8
fixed
qt5-qtbase-postgresql
RHEL 8
0:5.15.2-3.el8
fixed
qt5-qtbase-private-devel
RHEL 8
0:5.15.2-3.el8
fixed
qt5-qtbase-static
RHEL 8
0:5.15.2-3.el8
fixed
qt5-qtcanvas3d
RHEL 8
0:5.12.5-3.el8
fixed
qt5-qtcanvas3d-examples
RHEL 8
0:5.12.5-3.el8
fixed
qt5-qtconnectivity
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtconnectivity-devel
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtconnectivity-examples
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtdeclarative
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtdeclarative-devel
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtdeclarative-examples
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtdeclarative-static
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtdoc
RHEL 8
0:5.15.2-1.el8
fixed
qt5-qtgraphicaleffects
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtimageformats
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtlocation
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtlocation-devel
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtlocation-examples
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtmultimedia
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtmultimedia-devel
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtmultimedia-examples
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtquickcontrols
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtquickcontrols-examples
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtquickcontrols2
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtquickcontrols2-devel
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtquickcontrols2-examples
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtscript
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtscript-devel
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtscript-examples
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtsensors
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtsensors-devel
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtsensors-examples
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtserialbus
RHEL 8
0:5.15.2-3.el8
fixed
qt5-qtserialbus-devel
RHEL 8
0:5.15.2-3.el8
fixed
qt5-qtserialbus-examples
RHEL 8
0:5.15.2-3.el8
fixed
qt5-qtserialport
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtserialport-devel
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtserialport-examples
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtsvg
RHEL 8
0:5.15.2-3.el8
fixed
qt5-qtsvg-devel
RHEL 8
0:5.15.2-3.el8
fixed
qt5-qtsvg-examples
RHEL 8
0:5.15.2-3.el8
fixed
qt5-qttools
RHEL 8
0:5.15.2-3.el8
fixed
qt5-qttools-common
RHEL 8
0:5.15.2-3.el8
fixed
qt5-qttools-devel
RHEL 8
0:5.15.2-3.el8
fixed
qt5-qttools-examples
RHEL 8
0:5.15.2-3.el8
fixed
qt5-qttools-libs-designer
RHEL 8
0:5.15.2-3.el8
fixed
qt5-qttools-libs-designercomponents
RHEL 8
0:5.15.2-3.el8
fixed
qt5-qttools-libs-help
RHEL 8
0:5.15.2-3.el8
fixed
qt5-qttools-static
RHEL 8
0:5.15.2-3.el8
fixed
qt5-qttranslations
RHEL 8
0:5.15.2-1.el8
fixed
qt5-qtwayland
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtwayland-devel
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtwayland-examples
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtwebchannel
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtwebchannel-devel
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtwebchannel-examples
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtwebsockets
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtwebsockets-devel
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtwebsockets-examples
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtx11extras
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtx11extras-devel
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtxmlpatterns
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtxmlpatterns-devel
RHEL 8
0:5.15.2-2.el8
fixed
qt5-qtxmlpatterns-examples
RHEL 8
0:5.15.2-2.el8
fixed
qt5-rpm-macros
RHEL 8
0:5.15.2-1.el8
fixed
qt5-srpm-macros
RHEL 8
0:5.15.2-1.el8
fixed
sip
RHEL 8
0:4.19.24-2.el8
fixed
Common Weakness Enumeration
References
https://access.redhat.com/security/cve/CVE-2021-3481
https://bugreports.qt.io/browse/QTBUG-91507
https://bugzilla.redhat.com/show_bug.cgi?id=1931444
https://codereview.qt-project.org/c/qt/qtsvg/+/337646
https://lists.debian.org/debian-lts-announce/2023/08/msg00028.html
https://access.redhat.com/security/cve/CVE-2021-3481
https://bugreports.qt.io/browse/QTBUG-91507
https://bugzilla.redhat.com/show_bug.cgi?id=1931444
https://codereview.qt-project.org/c/qt/qtsvg/+/337646
https://lists.debian.org/debian-lts-announce/2023/08/msg00028.html