{"id":"CVE-2014-0190","details":"The GIF decoder in QtGui in Qt before 5.3 allows remote attackers to cause a denial of service (NULL pointer dereference) via invalid width and height values in a GIF image.","modified":"2026-04-16T01:43:20.768075060Z","published":"2014-05-08T14:29:13Z","withdrawn":"2024-06-30T13:40:11.275739Z","related":["openSUSE-SU-2024:10180-1"],"references":[{"type":"ADVISORY","url":"http://lists.qt-project.org/pipermail/announce/2014-April/000045.html"},{"type":"WEB","url":"http://www.securityfocus.com/bid/67087"},{"type":"ADVISORY","url":"http://www.ubuntu.com/usn/USN-2626-1"},{"type":"WEB","url":"https://bugs.kde.org/show_bug.cgi?id=333404"},{"type":"WEB","url":"http://lists.fedoraproject.org/pipermail/package-announce/2014-June/134040.html"},{"type":"WEB","url":"http://lists.fedoraproject.org/pipermail/package-announce/2014-June/134141.html"},{"type":"WEB","url":"http://lists.fedoraproject.org/pipermail/package-announce/2014-May/132395.html"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-updates/2015-03/msg00068.html"}],"affected":[{"package":{"name":"qt4-x11","ecosystem":"Debian:10","purl":"pkg:deb/debian/qt4-x11?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4:4.8.6+dfsg-1"}]}],"ecosystem_specific":{"urgency":"low"},"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2014-0190.json"}}],"schema_version":"1.7.3"}