{"id":"CVE-2015-1859","details":"Multiple buffer overflows in plugins/imageformats/ico/qicohandler.cpp in the QtBase module in Qt before 4.8.7 and 5.x before 5.4.2 allow remote attackers to cause a denial of service (segmentation fault and crash) and possibly execute arbitrary code via a crafted ICO image.","modified":"2026-04-16T06:16:59.180531910Z","published":"2015-05-12T19:59:05Z","related":["SUSE-SU-2015:0977-1","SUSE-SU-2015:1359-1","SUSE-SU-2015:1383-1","openSUSE-SU-2024:10180-1"],"references":[{"type":"ADVISORY","url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-April/155424.html"},{"type":"ADVISORY","url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-April/155927.html"},{"type":"ADVISORY","url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-April/155962.html"},{"type":"ADVISORY","url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-April/155976.html"},{"type":"ADVISORY","url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-April/156727.html"},{"type":"ADVISORY","url":"http://lists.qt-project.org/pipermail/announce/2015-April/000067.html"},{"type":"ADVISORY","url":"http://www.securityfocus.com/bid/74307"},{"type":"ADVISORY","url":"http://www.ubuntu.com/usn/USN-2626-1"},{"type":"ADVISORY","url":"https://security.gentoo.org/glsa/201603-10"},{"type":"FIX","url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-April/155927.html"},{"type":"FIX","url":"http://lists.qt-project.org/pipermail/announce/2015-April/000067.html"},{"type":"WEB","url":"http://www.securityfocus.com/bid/74310"}],"schema_version":"1.7.5"}