{"id":"CVE-2019-18281","details":"An out-of-bounds memory access in the generateDirectionalRuns() function in qtextengine.cpp in Qt qtbase 5.11.x and 5.12.x before 5.12.5 allows attackers to cause a denial of service by crashing an application via a text file containing many directional characters.","modified":"2026-04-16T01:47:38.535498592Z","published":"2019-10-23T15:15:14.343Z","references":[{"type":"WEB","url":"https://usn.ubuntu.com/4275-1/"},{"type":"ADVISORY","url":"https://bugs.launchpad.net/ubuntu/+source/qtbase-opensource-src/+bug/1848784"},{"type":"ADVISORY","url":"https://codereview.qt-project.org/c/qt/qtbase/+/271889"},{"type":"ADVISORY","url":"https://seclists.org/bugtraq/2019/Nov/4"},{"type":"ADVISORY","url":"https://security.gentoo.org/glsa/202003-60"},{"type":"ADVISORY","url":"https://www.debian.org/security/2019/dsa-4556"},{"type":"REPORT","url":"https://bugreports.qt.io/browse/QTBUG-77819"},{"type":"REPORT","url":"https://bugs.launchpad.net/ubuntu/+source/qtbase-opensource-src/+bug/1848784"},{"type":"FIX","url":"https://codereview.qt-project.org/c/qt/qtbase/+/271889"},{"type":"ARTICLE","url":"https://seclists.org/bugtraq/2019/Nov/4"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/qt/qtbase","events":[{"introduced":"13ed06640c6cf32ea8c784c896c6bf017053edb3"},{"fixed":"abfb1b8665923ce2824392f3a04e5e4ac3871017"}]}],"versions":["v5.11.3","v5.12.0","v5.12.1","v5.12.2","v5.12.3","v5.12.4"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-18281.json","vanir_signatures":[{"signature_type":"Line","digest":{"line_hashes":["42175485319852982382716562530548920112","269969189790789914493321821784506182077","192896421012310542730988811461340756350","81493618896476637973500433905196848195","177778031528303863734575949352642260045","204261337458403320614169416449406855994","282401848054897177864544170876498713116","23956863597407661719760492111577731941","120874335481434784682992640334932410074"],"threshold":0.9},"deprecated":false,"signature_version":"v1","target":{"file":"qmake/generators/mac/pbuilder_pbx.cpp"},"source":"https://github.com/qt/qtbase/commit/abfb1b8665923ce2824392f3a04e5e4ac3871017","id":"CVE-2019-18281-ce26650f"},{"digest":{"length":55991,"function_hash":"55318626890648757947913378382764058604"},"signature_type":"Function","deprecated":false,"signature_version":"v1","target":{"file":"qmake/generators/mac/pbuilder_pbx.cpp","function":"ProjectBuilderMakefileGenerator::writeMakeParts"},"source":"https://github.com/qt/qtbase/commit/abfb1b8665923ce2824392f3a04e5e4ac3871017","id":"CVE-2019-18281-f29a5ae7"}]}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}]}