Vulnerability Description
Qt 6 through 6.6 was discovered to contain a NULL pointer dereference via the function QXcbConnection::initializeAllAtoms(). NOTE: this is disputed because it is not expected that an X application should continue to run when there is arbitrary anomalous behavior from the X server.
CVSS Score
MEDIUM
Related Weaknesses (CWE)
References
- http://seclists.org/fulldisclosure/2024/Jan/61
- https://bugreports.qt.io/browse/QTBUG-115599
- http://packetstormsecurity.com/files/176815/qt-6.6-6.5-6.2-Null-Pointer.html
- http://seclists.org/fulldisclosure/2024/Jan/61
- https://bugreports.qt.io/browse/QTBUG-115599
FAQ
What is CVE-2023-45935?
CVE-2023-45935 is a vulnerability with a CVSS score of 4.2 (MEDIUM). Qt 6 through 6.6 was discovered to contain a NULL pointer dereference via the function QXcbConnection::initializeAllAtoms(). NOTE: this is disputed because it is not expected that an X application sho...
How severe is CVE-2023-45935?
CVE-2023-45935 has been rated MEDIUM with a CVSS base score of 4.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-45935?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.