{"id":"AZL-68199","summary":"CVE-2025-10729 affecting package qtsvg for versions less than 6.6.1-3","details":"The module will parse a \u003cpattern\u003e node which is not a child of a structural node. The node will be deleted after creation but might be accessed later leading to a use after free.","modified":"2026-04-21T04:38:21.504161Z","published":"2025-10-03T16:16:16Z","upstream":["CVE-2025-10729"],"references":[{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-10729"}],"affected":[{"package":{"name":"qtsvg","ecosystem":"Azure Linux:3","purl":"pkg:rpm/azure-linux/qtsvg"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"6.6.1-3"}]}],"database_specific":{"source":"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-68199.json"}}],"schema_version":"1.7.5"}