CVE-2025-5455

EUVD-2025-16625

02.06.2025, 09:15

An issue was found in the private API function qDecodeDataUrl() in QtCore, which is used in QTextDocument and QNetworkReply, and, potentially, in user code.

If the function was called with malformed data, for example, an URL that
contained a "charset" parameter that lacked a value (such as
"data:charset,"), and Qt was built with assertions enabled, then it would hit an assertion, resulting in a denial of service
(abort).

This impacts Qt up to 5.15.18, 6.0.0->6.5.8, 6.6.0->6.8.3 and 6.9.0. This has been fixed in 5.15.19, 6.5.9, 6.8.4 and 6.9.1.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	UNKNOWN				---

Awaiting analysis

This vulnerability is currently awaiting analysis.

Base Score

CVSS 3.x

EPSS Score

Percentile: 60%

Debian Releases

Debian Product

Codename

qt6-base

bookworm	no-dsa
forky	6.10.2+dfsg-12 fixed
sid	6.10.2+dfsg-14 fixed
trixie	6.8.2+dfsg-9+deb13u2 fixed

qtbase-opensource-src

bookworm	no-dsa
bullseye	postponed
bullseye (security)	vulnerable
forky	5.15.17+dfsg-8 fixed
sid	5.15.17+dfsg-8 fixed
trixie	5.15.15+dfsg-6+deb13u1 fixed

qtbase-opensource-src-gles

bookworm	5.15.8+dfsg-3 fixed
bullseye	5.15.2+dfsg-4 fixed
forky	5.15.17+dfsg-2 fixed
sid	5.15.17+dfsg-2 fixed
trixie	5.15.15+dfsg-2 fixed

openSUSE / SLES Releases

openSUSE Product

Release

libQt6Core6

suse enterprise desktop 15 SP6	6.6.3-150600.3.6.1 fixed
suse enterprise desktop 15 SP7	6.6.3-150600.3.6.1 fixed
suse enterprise sap 15 SP6	6.6.3-150600.3.6.1 fixed
suse enterprise sap 15 SP7	6.6.3-150600.3.6.1 fixed
suse enterprise server 15 SP6	6.6.3-150600.3.6.1 fixed
suse enterprise server 15 SP7	6.6.3-150600.3.6.1 fixed

libQt6DBus6

suse enterprise desktop 15 SP6	6.6.3-150600.3.6.1 fixed
suse enterprise desktop 15 SP7	6.6.3-150600.3.6.1 fixed
suse enterprise sap 15 SP6	6.6.3-150600.3.6.1 fixed
suse enterprise sap 15 SP7	6.6.3-150600.3.6.1 fixed
suse enterprise server 15 SP6	6.6.3-150600.3.6.1 fixed
suse enterprise server 15 SP7	6.6.3-150600.3.6.1 fixed

libQt6Gui6

suse enterprise desktop 15 SP6	6.6.3-150600.3.6.1 fixed
suse enterprise desktop 15 SP7	6.6.3-150600.3.6.1 fixed
suse enterprise sap 15 SP6	6.6.3-150600.3.6.1 fixed
suse enterprise sap 15 SP7	6.6.3-150600.3.6.1 fixed
suse enterprise server 15 SP6	6.6.3-150600.3.6.1 fixed
suse enterprise server 15 SP7	6.6.3-150600.3.6.1 fixed

libQt6Network6

suse enterprise desktop 15 SP6	6.6.3-150600.3.6.1 fixed
suse enterprise desktop 15 SP7	6.6.3-150600.3.6.1 fixed
suse enterprise sap 15 SP6	6.6.3-150600.3.6.1 fixed
suse enterprise sap 15 SP7	6.6.3-150600.3.6.1 fixed
suse enterprise server 15 SP6	6.6.3-150600.3.6.1 fixed
suse enterprise server 15 SP7	6.6.3-150600.3.6.1 fixed

libQt6OpenGL6

suse enterprise desktop 15 SP6	6.6.3-150600.3.6.1 fixed
suse enterprise desktop 15 SP7	6.6.3-150600.3.6.1 fixed
suse enterprise sap 15 SP6	6.6.3-150600.3.6.1 fixed
suse enterprise sap 15 SP7	6.6.3-150600.3.6.1 fixed
suse enterprise server 15 SP6	6.6.3-150600.3.6.1 fixed
suse enterprise server 15 SP7	6.6.3-150600.3.6.1 fixed

libQt6Sql6

suse enterprise desktop 15 SP6	6.6.3-150600.3.6.1 fixed
suse enterprise desktop 15 SP7	6.6.3-150600.3.6.1 fixed
suse enterprise sap 15 SP6	6.6.3-150600.3.6.1 fixed
suse enterprise sap 15 SP7	6.6.3-150600.3.6.1 fixed
suse enterprise server 15 SP6	6.6.3-150600.3.6.1 fixed
suse enterprise server 15 SP7	6.6.3-150600.3.6.1 fixed

libQt6Test6

suse enterprise desktop 15 SP6	6.6.3-150600.3.6.1 fixed
suse enterprise desktop 15 SP7	6.6.3-150600.3.6.1 fixed
suse enterprise sap 15 SP6	6.6.3-150600.3.6.1 fixed
suse enterprise sap 15 SP7	6.6.3-150600.3.6.1 fixed
suse enterprise server 15 SP6	6.6.3-150600.3.6.1 fixed
suse enterprise server 15 SP7	6.6.3-150600.3.6.1 fixed

libQt6Widgets6

suse enterprise desktop 15 SP6	6.6.3-150600.3.6.1 fixed
suse enterprise desktop 15 SP7	6.6.3-150600.3.6.1 fixed
suse enterprise sap 15 SP6	6.6.3-150600.3.6.1 fixed
suse enterprise sap 15 SP7	6.6.3-150600.3.6.1 fixed
suse enterprise server 15 SP6	6.6.3-150600.3.6.1 fixed
suse enterprise server 15 SP7	6.6.3-150600.3.6.1 fixed

libqt4

suse enterprise server 12 SP3

4.8.7-8.22.1

fixed

libqt4-32bit

suse enterprise server 12 SP3

4.8.7-8.22.1

fixed

libqt4-qt3support

suse enterprise server 12 SP3

4.8.7-8.22.1

fixed

libqt4-qt3support-32bit

suse enterprise server 12 SP3

4.8.7-8.22.1

fixed

libqt4-sql

suse enterprise server 12 SP3

4.8.7-8.22.1

fixed

libqt4-sql-32bit

suse enterprise server 12 SP3

4.8.7-8.22.1

fixed

libqt4-sql-mysql

suse enterprise server 12 SP3

4.8.7-8.22.1

fixed

libqt4-sql-sqlite

suse enterprise server 12 SP3

4.8.7-8.22.1

fixed

libqt4-x11

suse enterprise server 12 SP3

4.8.7-8.22.1

fixed

libqt4-x11-32bit

suse enterprise server 12 SP3

4.8.7-8.22.1

fixed

qt4-x11-tools

suse enterprise server 12 SP3

4.8.7-8.22.1

fixed

qt6-network-tls

suse enterprise desktop 15 SP6	6.6.3-150600.3.6.1 fixed
suse enterprise desktop 15 SP7	6.6.3-150600.3.6.1 fixed
suse enterprise sap 15 SP6	6.6.3-150600.3.6.1 fixed
suse enterprise sap 15 SP7	6.6.3-150600.3.6.1 fixed
suse enterprise server 15 SP6	6.6.3-150600.3.6.1 fixed
suse enterprise server 15 SP7	6.6.3-150600.3.6.1 fixed

qt6-networkinformation-glib

suse enterprise desktop 15 SP6	6.6.3-150600.3.6.1 fixed
suse enterprise desktop 15 SP7	6.6.3-150600.3.6.1 fixed
suse enterprise sap 15 SP6	6.6.3-150600.3.6.1 fixed
suse enterprise sap 15 SP7	6.6.3-150600.3.6.1 fixed
suse enterprise server 15 SP6	6.6.3-150600.3.6.1 fixed
suse enterprise server 15 SP7	6.6.3-150600.3.6.1 fixed

qt6-networkinformation-nm

suse enterprise desktop 15 SP6	6.6.3-150600.3.6.1 fixed
suse enterprise desktop 15 SP7	6.6.3-150600.3.6.1 fixed
suse enterprise sap 15 SP6	6.6.3-150600.3.6.1 fixed
suse enterprise sap 15 SP7	6.6.3-150600.3.6.1 fixed
suse enterprise server 15 SP6	6.6.3-150600.3.6.1 fixed
suse enterprise server 15 SP7	6.6.3-150600.3.6.1 fixed

Red Hat Enterprise Linux Releases

Red Hat Product

Release

qt5-qtbase

RHEL 9

0:5.15.9-11.el9_6

fixed

qt5-qtbase-common

RHEL 9

0:5.15.9-11.el9_6

fixed

qt5-qtbase-devel

RHEL 9

0:5.15.9-11.el9_6

fixed

qt5-qtbase-examples

RHEL 9

0:5.15.9-11.el9_6

fixed

qt5-qtbase-gui

RHEL 9

0:5.15.9-11.el9_6

fixed

qt5-qtbase-mysql

RHEL 9

0:5.15.9-11.el9_6

fixed

qt5-qtbase-odbc

RHEL 9

0:5.15.9-11.el9_6

fixed

qt5-qtbase-postgresql

RHEL 9

0:5.15.9-11.el9_6

fixed

qt5-qtbase-private-devel

RHEL 9

0:5.15.9-11.el9_6

fixed

qt5-qtbase-static

RHEL 9

0:5.15.9-11.el9_6

fixed

Common Weakness Enumeration

CWE-20 - Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References

https://codereview.qt-project.org/c/qt/qtbase/+/642006