{"id":"UBUNTU-CVE-2025-5455","details":"An issue was found in the private API function qDecodeDataUrl() in QtCore, which is used in QTextDocument and QNetworkReply, and, potentially, in user code. If the function was called with malformed data, for example, an URL that contained a \"charset\" parameter that lacked a value (such as \"data:charset,\"), and Qt was built with assertions enabled, then it would hit an assertion, resulting in a denial of service (abort). This impacts Qt up to 5.15.18, 6.0.0-\u003e6.5.8, 6.6.0-\u003e6.8.3 and 6.9.0. This has been fixed in 5.15.19, 6.5.9, 6.8.4 and 6.9.1.","modified":"2026-04-22T19:56:57.571821Z","published":"2025-06-02T09:15:00Z","upstream":["CVE-2025-5455"],"references":[{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2025-5455"},{"type":"REPORT","url":"https://www.cve.org/CVERecord?id=CVE-2025-5455"},{"type":"REPORT","url":"https://codereview.qt-project.org/c/qt/qtbase/+/642006"}],"affected":[{"package":{"name":"qtbase-opensource-src","ecosystem":"Ubuntu:Pro:16.04:LTS","purl":"pkg:deb/ubuntu/qtbase-opensource-src@5.5.1+dfsg-16ubuntu7.7+esm2?arch=source&distro=esm-infra/xenial"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["5.4.2+dfsg-2ubuntu9","5.5.1+dfsg-6ubuntu4","5.5.1+dfsg-10ubuntu2","5.5.1+dfsg-13ubuntu1","5.5.1+dfsg-13ubuntu2","5.5.1+dfsg-13ubuntu3","5.5.1+dfsg-14ubuntu1","5.5.1+dfsg-14ubuntu2","5.5.1+dfsg-14ubuntu3","5.5.1+dfsg-15ubuntu1","5.5.1+dfsg-16ubuntu1","5.5.1+dfsg-16ubuntu6","5.5.1+dfsg-16ubuntu7","5.5.1+dfsg-16ubuntu7.1","5.5.1+dfsg-16ubuntu7.2","5.5.1+dfsg-16ubuntu7.5","5.5.1+dfsg-16ubuntu7.6","5.5.1+dfsg-16ubuntu7.7","5.5.1+dfsg-16ubuntu7.7+esm1","5.5.1+dfsg-16ubuntu7.7+esm2"],"ecosystem_specific":{"binaries":[{"binary_version":"5.5.1+dfsg-16ubuntu7.7+esm2","binary_name":"libqt5concurrent5"},{"binary_version":"5.5.1+dfsg-16ubuntu7.7+esm2","binary_name":"libqt5core5a"},{"binary_version":"5.5.1+dfsg-16ubuntu7.7+esm2","binary_name":"libqt5dbus5"},{"binary_version":"5.5.1+dfsg-16ubuntu7.7+esm2","binary_name":"libqt5gui5"},{"binary_version":"5.5.1+dfsg-16ubuntu7.7+esm2","binary_name":"libqt5libqgtk2"},{"binary_version":"5.5.1+dfsg-16ubuntu7.7+esm2","binary_name":"libqt5network5"},{"binary_version":"5.5.1+dfsg-16ubuntu7.7+esm2","binary_name":"libqt5opengl5"},{"binary_version":"5.5.1+dfsg-16ubuntu7.7+esm2","binary_name":"libqt5printsupport5"},{"binary_version":"5.5.1+dfsg-16ubuntu7.7+esm2","binary_name":"libqt5sql5"},{"binary_version":"5.5.1+dfsg-16ubuntu7.7+esm2","binary_name":"libqt5sql5-mysql"},{"binary_version":"5.5.1+dfsg-16ubuntu7.7+esm2","binary_name":"libqt5sql5-odbc"},{"binary_version":"5.5.1+dfsg-16ubuntu7.7+esm2","binary_name":"libqt5sql5-psql"},{"binary_version":"5.5.1+dfsg-16ubuntu7.7+esm2","binary_name":"libqt5sql5-sqlite"},{"binary_version":"5.5.1+dfsg-16ubuntu7.7+esm2","binary_name":"libqt5sql5-tds"},{"binary_version":"5.5.1+dfsg-16ubuntu7.7+esm2","binary_name":"libqt5test5"},{"binary_version":"5.5.1+dfsg-16ubuntu7.7+esm2","binary_name":"libqt5widgets5"},{"binary_version":"5.5.1+dfsg-16ubuntu7.7+esm2","binary_name":"libqt5xml5"},{"binary_version":"5.5.1+dfsg-16ubuntu7.7+esm2","binary_name":"qt5-default"},{"binary_version":"5.5.1+dfsg-16ubuntu7.7+esm2","binary_name":"qt5-qmake"},{"binary_version":"5.5.1+dfsg-16ubuntu7.7+esm2","binary_name":"qt5-qmake-arm-linux-gnueabihf"},{"binary_version":"5.5.1+dfsg-16ubuntu7.7+esm2","binary_name":"qtbase5-dev-tools"},{"binary_version":"5.5.1+dfsg-16ubuntu7.7+esm2","binary_name":"qtbase5-doc-html"},{"binary_version":"5.5.1+dfsg-16ubuntu7.7+esm2","binary_name":"qtbase5-examples"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-5455.json"}},{"package":{"name":"qtbase-opensource-src-gles","ecosystem":"Ubuntu:16.04:LTS","purl":"pkg:deb/ubuntu/qtbase-opensource-src-gles@5.5.1+dfsg-16ubuntu6?arch=source&distro=xenial"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["5.4.2+dfsg-2ubuntu9","5.5.1+dfsg-6ubuntu1","5.5.1+dfsg-10ubuntu1","5.5.1+dfsg-13ubuntu1","5.5.1+dfsg-13ubuntu2","5.5.1+dfsg-13ubuntu3","5.5.1+dfsg-14ubuntu1","5.5.1+dfsg-14ubuntu2","5.5.1+dfsg-14ubuntu3","5.5.1+dfsg-15ubuntu1","5.5.1+dfsg-16ubuntu1","5.5.1+dfsg-16ubuntu4","5.5.1+dfsg-16ubuntu5","5.5.1+dfsg-16ubuntu6"],"ecosystem_specific":{"binaries":[{"binary_version":"5.5.1+dfsg-16ubuntu6","binary_name":"libqt5gui5-gles"},{"binary_version":"5.5.1+dfsg-16ubuntu6","binary_name":"libqt5opengl5-gles"},{"binary_version":"5.5.1+dfsg-16ubuntu6","binary_name":"qt5-qmake-gles"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-5455.json"}},{"package":{"name":"qtbase-opensource-src","ecosystem":"Ubuntu:Pro:18.04:LTS","purl":"pkg:deb/ubuntu/qtbase-opensource-src@5.9.5+dfsg-0ubuntu2.6+esm2?arch=source&distro=esm-infra/bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["5.9.1+dfsg-10ubuntu1","5.9.1+dfsg-10ubuntu2","5.9.2+dfsg-4ubuntu6","5.9.3+dfsg-0ubuntu1","5.9.3+dfsg-0ubuntu3","5.9.3+dfsg-0ubuntu4","5.9.4+dfsg-0ubuntu3","5.9.4+dfsg-0ubuntu4","5.9.5+dfsg-0ubuntu1","5.9.5+dfsg-0ubuntu2","5.9.5+dfsg-0ubuntu2.1","5.9.5+dfsg-0ubuntu2.3","5.9.5+dfsg-0ubuntu2.4","5.9.5+dfsg-0ubuntu2.5","5.9.5+dfsg-0ubuntu2.6","5.9.5+dfsg-0ubuntu2.6+esm1","5.9.5+dfsg-0ubuntu2.6+esm2"],"ecosystem_specific":{"binaries":[{"binary_version":"5.9.5+dfsg-0ubuntu2.6+esm2","binary_name":"libqt5concurrent5"},{"binary_version":"5.9.5+dfsg-0ubuntu2.6+esm2","binary_name":"libqt5core5a"},{"binary_version":"5.9.5+dfsg-0ubuntu2.6+esm2","binary_name":"libqt5dbus5"},{"binary_version":"5.9.5+dfsg-0ubuntu2.6+esm2","binary_name":"libqt5gui5"},{"binary_version":"5.9.5+dfsg-0ubuntu2.6+esm2","binary_name":"libqt5network5"},{"binary_version":"5.9.5+dfsg-0ubuntu2.6+esm2","binary_name":"libqt5opengl5"},{"binary_version":"5.9.5+dfsg-0ubuntu2.6+esm2","binary_name":"libqt5printsupport5"},{"binary_version":"5.9.5+dfsg-0ubuntu2.6+esm2","binary_name":"libqt5sql5"},{"binary_version":"5.9.5+dfsg-0ubuntu2.6+esm2","binary_name":"libqt5sql5-ibase"},{"binary_version":"5.9.5+dfsg-0ubuntu2.6+esm2","binary_name":"libqt5sql5-mysql"},{"binary_version":"5.9.5+dfsg-0ubuntu2.6+esm2","binary_name":"libqt5sql5-odbc"},{"binary_version":"5.9.5+dfsg-0ubuntu2.6+esm2","binary_name":"libqt5sql5-psql"},{"binary_version":"5.9.5+dfsg-0ubuntu2.6+esm2","binary_name":"libqt5sql5-sqlite"},{"binary_version":"5.9.5+dfsg-0ubuntu2.6+esm2","binary_name":"libqt5sql5-tds"},{"binary_version":"5.9.5+dfsg-0ubuntu2.6+esm2","binary_name":"libqt5test5"},{"binary_version":"5.9.5+dfsg-0ubuntu2.6+esm2","binary_name":"libqt5widgets5"},{"binary_version":"5.9.5+dfsg-0ubuntu2.6+esm2","binary_name":"libqt5xml5"},{"binary_version":"5.9.5+dfsg-0ubuntu2.6+esm2","binary_name":"qt5-default"},{"binary_version":"5.9.5+dfsg-0ubuntu2.6+esm2","binary_name":"qt5-gtk-platformtheme"},{"binary_version":"5.9.5+dfsg-0ubuntu2.6+esm2","binary_name":"qt5-qmake"},{"binary_version":"5.9.5+dfsg-0ubuntu2.6+esm2","binary_name":"qt5-qmake-bin"},{"binary_version":"5.9.5+dfsg-0ubuntu2.6+esm2","binary_name":"qtbase5-dev-tools"},{"binary_version":"5.9.5+dfsg-0ubuntu2.6+esm2","binary_name":"qtbase5-doc-html"},{"binary_version":"5.9.5+dfsg-0ubuntu2.6+esm2","binary_name":"qtbase5-examples"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-5455.json"}},{"package":{"name":"qtbase-opensource-src","ecosystem":"Ubuntu:Pro:20.04:LTS","purl":"pkg:deb/ubuntu/qtbase-opensource-src@5.12.8+dfsg-0ubuntu2.1+esm3?arch=source&distro=esm-apps/focal"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["5.12.4+dfsg-4ubuntu1","5.12.5+dfsg-2","5.12.5+dfsg-8","5.12.5+dfsg-8build1","5.12.5+dfsg-9build1","5.12.8+dfsg-0ubuntu1","5.12.8+dfsg-0ubuntu2.1","5.12.8+dfsg-0ubuntu2.1+esm1","5.12.8+dfsg-0ubuntu2.1+esm2","5.12.8+dfsg-0ubuntu2.1+esm3"],"ecosystem_specific":{"binaries":[{"binary_version":"5.12.8+dfsg-0ubuntu2.1+esm3","binary_name":"libqt5concurrent5"},{"binary_version":"5.12.8+dfsg-0ubuntu2.1+esm3","binary_name":"libqt5core5a"},{"binary_version":"5.12.8+dfsg-0ubuntu2.1+esm3","binary_name":"libqt5dbus5"},{"binary_version":"5.12.8+dfsg-0ubuntu2.1+esm3","binary_name":"libqt5gui5"},{"binary_version":"5.12.8+dfsg-0ubuntu2.1+esm3","binary_name":"libqt5network5"},{"binary_version":"5.12.8+dfsg-0ubuntu2.1+esm3","binary_name":"libqt5opengl5"},{"binary_version":"5.12.8+dfsg-0ubuntu2.1+esm3","binary_name":"libqt5printsupport5"},{"binary_version":"5.12.8+dfsg-0ubuntu2.1+esm3","binary_name":"libqt5sql5"},{"binary_version":"5.12.8+dfsg-0ubuntu2.1+esm3","binary_name":"libqt5sql5-ibase"},{"binary_version":"5.12.8+dfsg-0ubuntu2.1+esm3","binary_name":"libqt5sql5-mysql"},{"binary_version":"5.12.8+dfsg-0ubuntu2.1+esm3","binary_name":"libqt5sql5-odbc"},{"binary_version":"5.12.8+dfsg-0ubuntu2.1+esm3","binary_name":"libqt5sql5-psql"},{"binary_version":"5.12.8+dfsg-0ubuntu2.1+esm3","binary_name":"libqt5sql5-sqlite"},{"binary_version":"5.12.8+dfsg-0ubuntu2.1+esm3","binary_name":"libqt5sql5-tds"},{"binary_version":"5.12.8+dfsg-0ubuntu2.1+esm3","binary_name":"libqt5test5"},{"binary_version":"5.12.8+dfsg-0ubuntu2.1+esm3","binary_name":"libqt5widgets5"},{"binary_version":"5.12.8+dfsg-0ubuntu2.1+esm3","binary_name":"libqt5xml5"},{"binary_version":"5.12.8+dfsg-0ubuntu2.1+esm3","binary_name":"qt5-default"},{"binary_version":"5.12.8+dfsg-0ubuntu2.1+esm3","binary_name":"qt5-flatpak-platformtheme"},{"binary_version":"5.12.8+dfsg-0ubuntu2.1+esm3","binary_name":"qt5-gtk-platformtheme"},{"binary_version":"5.12.8+dfsg-0ubuntu2.1+esm3","binary_name":"qt5-qmake"},{"binary_version":"5.12.8+dfsg-0ubuntu2.1+esm3","binary_name":"qt5-qmake-bin"},{"binary_version":"5.12.8+dfsg-0ubuntu2.1+esm3","binary_name":"qt5-xdgdesktopportal-platformtheme"},{"binary_version":"5.12.8+dfsg-0ubuntu2.1+esm3","binary_name":"qtbase5-dev-tools"},{"binary_version":"5.12.8+dfsg-0ubuntu2.1+esm3","binary_name":"qtbase5-doc-html"},{"binary_version":"5.12.8+dfsg-0ubuntu2.1+esm3","binary_name":"qtbase5-examples"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-5455.json"}},{"package":{"name":"qtbase-opensource-src-gles","ecosystem":"Ubuntu:20.04:LTS","purl":"pkg:deb/ubuntu/qtbase-opensource-src-gles@5.12.8+dfsg-0ubuntu1?arch=source&distro=focal"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["5.12.4+dfsg-1build1","5.12.5+dfsg-1","5.12.5+dfsg-2","5.12.8+dfsg-0ubuntu1"],"ecosystem_specific":{"binaries":[{"binary_version":"5.12.8+dfsg-0ubuntu1","binary_name":"libqt5gui5-gles"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-5455.json"}},{"package":{"name":"qt6-base","ecosystem":"Ubuntu:22.04:LTS","purl":"pkg:deb/ubuntu/qt6-base@6.2.4+dfsg-2ubuntu1.1?arch=source&distro=jammy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["6.2.2+dfsg-5ubuntu1","6.2.2+dfsg-6ubuntu1","6.2.2+dfsg-6ubuntu2","6.2.4+dfsg-1ubuntu1","6.2.4+dfsg-2ubuntu1","6.2.4+dfsg-2ubuntu1.1"],"ecosystem_specific":{"binaries":[{"binary_version":"6.2.4+dfsg-2ubuntu1.1","binary_name":"libqt6concurrent6"},{"binary_version":"6.2.4+dfsg-2ubuntu1.1","binary_name":"libqt6core6"},{"binary_version":"6.2.4+dfsg-2ubuntu1.1","binary_name":"libqt6dbus6"},{"binary_version":"6.2.4+dfsg-2ubuntu1.1","binary_name":"libqt6gui6"},{"binary_version":"6.2.4+dfsg-2ubuntu1.1","binary_name":"libqt6network6"},{"binary_version":"6.2.4+dfsg-2ubuntu1.1","binary_name":"libqt6opengl6"},{"binary_version":"6.2.4+dfsg-2ubuntu1.1","binary_name":"libqt6openglwidgets6"},{"binary_version":"6.2.4+dfsg-2ubuntu1.1","binary_name":"libqt6printsupport6"},{"binary_version":"6.2.4+dfsg-2ubuntu1.1","binary_name":"libqt6sql6"},{"binary_version":"6.2.4+dfsg-2ubuntu1.1","binary_name":"libqt6sql6-ibase"},{"binary_version":"6.2.4+dfsg-2ubuntu1.1","binary_name":"libqt6sql6-mysql"},{"binary_version":"6.2.4+dfsg-2ubuntu1.1","binary_name":"libqt6sql6-odbc"},{"binary_version":"6.2.4+dfsg-2ubuntu1.1","binary_name":"libqt6sql6-psql"},{"binary_version":"6.2.4+dfsg-2ubuntu1.1","binary_name":"libqt6sql6-sqlite"},{"binary_version":"6.2.4+dfsg-2ubuntu1.1","binary_name":"libqt6test6"},{"binary_version":"6.2.4+dfsg-2ubuntu1.1","binary_name":"libqt6widgets6"},{"binary_version":"6.2.4+dfsg-2ubuntu1.1","binary_name":"libqt6xml6"},{"binary_version":"6.2.4+dfsg-2ubuntu1.1","binary_name":"qmake6"},{"binary_version":"6.2.4+dfsg-2ubuntu1.1","binary_name":"qmake6-bin"},{"binary_version":"6.2.4+dfsg-2ubuntu1.1","binary_name":"qt6-base-dev-tools"},{"binary_version":"6.2.4+dfsg-2ubuntu1.1","binary_name":"qt6-gtk-platformtheme"},{"binary_version":"6.2.4+dfsg-2ubuntu1.1","binary_name":"qt6-qpa-plugins"},{"binary_version":"6.2.4+dfsg-2ubuntu1.1","binary_name":"qt6-xdgdesktopportal-platformtheme"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-5455.json"}},{"package":{"name":"qtbase-opensource-src","ecosystem":"Ubuntu:22.04:LTS","purl":"pkg:deb/ubuntu/qtbase-opensource-src@5.15.3+dfsg-2ubuntu0.2?arch=source&distro=jammy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["5.15.2+dfsg-12","5.15.2+dfsg-13","5.15.2+dfsg-14","5.15.2+dfsg-14ubuntu1","5.15.2+dfsg-14ubuntu3","5.15.2+dfsg-15","5.15.3+dfsg-1","5.15.3+dfsg-2","5.15.3+dfsg-2ubuntu0.1","5.15.3+dfsg-2ubuntu0.2"],"ecosystem_specific":{"binaries":[{"binary_version":"5.15.3+dfsg-2ubuntu0.2","binary_name":"libqt5concurrent5"},{"binary_version":"5.15.3+dfsg-2ubuntu0.2","binary_name":"libqt5core5a"},{"binary_version":"5.15.3+dfsg-2ubuntu0.2","binary_name":"libqt5dbus5"},{"binary_version":"5.15.3+dfsg-2ubuntu0.2","binary_name":"libqt5gui5"},{"binary_version":"5.15.3+dfsg-2ubuntu0.2","binary_name":"libqt5network5"},{"binary_version":"5.15.3+dfsg-2ubuntu0.2","binary_name":"libqt5opengl5"},{"binary_version":"5.15.3+dfsg-2ubuntu0.2","binary_name":"libqt5printsupport5"},{"binary_version":"5.15.3+dfsg-2ubuntu0.2","binary_name":"libqt5sql5"},{"binary_version":"5.15.3+dfsg-2ubuntu0.2","binary_name":"libqt5sql5-ibase"},{"binary_version":"5.15.3+dfsg-2ubuntu0.2","binary_name":"libqt5sql5-mysql"},{"binary_version":"5.15.3+dfsg-2ubuntu0.2","binary_name":"libqt5sql5-odbc"},{"binary_version":"5.15.3+dfsg-2ubuntu0.2","binary_name":"libqt5sql5-psql"},{"binary_version":"5.15.3+dfsg-2ubuntu0.2","binary_name":"libqt5sql5-sqlite"},{"binary_version":"5.15.3+dfsg-2ubuntu0.2","binary_name":"libqt5sql5-tds"},{"binary_version":"5.15.3+dfsg-2ubuntu0.2","binary_name":"libqt5test5"},{"binary_version":"5.15.3+dfsg-2ubuntu0.2","binary_name":"libqt5widgets5"},{"binary_version":"5.15.3+dfsg-2ubuntu0.2","binary_name":"libqt5xml5"},{"binary_version":"5.15.3+dfsg-2ubuntu0.2","binary_name":"qt5-flatpak-platformtheme"},{"binary_version":"5.15.3+dfsg-2ubuntu0.2","binary_name":"qt5-gtk-platformtheme"},{"binary_version":"5.15.3+dfsg-2ubuntu0.2","binary_name":"qt5-qmake"},{"binary_version":"5.15.3+dfsg-2ubuntu0.2","binary_name":"qt5-qmake-bin"},{"binary_version":"5.15.3+dfsg-2ubuntu0.2","binary_name":"qt5-xdgdesktopportal-platformtheme"},{"binary_version":"5.15.3+dfsg-2ubuntu0.2","binary_name":"qtbase5-dev-tools"},{"binary_version":"5.15.3+dfsg-2ubuntu0.2","binary_name":"qtbase5-doc-html"},{"binary_version":"5.15.3+dfsg-2ubuntu0.2","binary_name":"qtbase5-examples"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-5455.json"}},{"package":{"name":"qtbase-opensource-src-gles","ecosystem":"Ubuntu:22.04:LTS","purl":"pkg:deb/ubuntu/qtbase-opensource-src-gles@5.15.3+dfsg-1?arch=source&distro=jammy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["5.15.2+dfsg-4","5.15.2+dfsg-5","5.15.3+dfsg-1"],"ecosystem_specific":{"binaries":[{"binary_version":"5.15.3+dfsg-1","binary_name":"libqt5gui5-gles"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-5455.json"}},{"package":{"name":"qt6-base","ecosystem":"Ubuntu:24.04:LTS","purl":"pkg:deb/ubuntu/qt6-base@6.4.2+dfsg-21.1build5?arch=source&distro=noble"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["6.4.2+dfsg-18","6.4.2+dfsg-19","6.4.2+dfsg-19build1","6.4.2+dfsg-20","6.4.2+dfsg-21","6.4.2+dfsg-21.1build4","6.4.2+dfsg-21.1build5"],"ecosystem_specific":{"binaries":[{"binary_version":"6.4.2+dfsg-21.1build5","binary_name":"libqt6concurrent6t64"},{"binary_version":"6.4.2+dfsg-21.1build5","binary_name":"libqt6core6t64"},{"binary_version":"6.4.2+dfsg-21.1build5","binary_name":"libqt6dbus6t64"},{"binary_version":"6.4.2+dfsg-21.1build5","binary_name":"libqt6gui6t64"},{"binary_version":"6.4.2+dfsg-21.1build5","binary_name":"libqt6network6t64"},{"binary_version":"6.4.2+dfsg-21.1build5","binary_name":"libqt6opengl6t64"},{"binary_version":"6.4.2+dfsg-21.1build5","binary_name":"libqt6openglwidgets6t64"},{"binary_version":"6.4.2+dfsg-21.1build5","binary_name":"libqt6printsupport6t64"},{"binary_version":"6.4.2+dfsg-21.1build5","binary_name":"libqt6sql6-ibase"},{"binary_version":"6.4.2+dfsg-21.1build5","binary_name":"libqt6sql6-mysql"},{"binary_version":"6.4.2+dfsg-21.1build5","binary_name":"libqt6sql6-odbc"},{"binary_version":"6.4.2+dfsg-21.1build5","binary_name":"libqt6sql6-psql"},{"binary_version":"6.4.2+dfsg-21.1build5","binary_name":"libqt6sql6-sqlite"},{"binary_version":"6.4.2+dfsg-21.1build5","binary_name":"libqt6sql6t64"},{"binary_version":"6.4.2+dfsg-21.1build5","binary_name":"libqt6test6t64"},{"binary_version":"6.4.2+dfsg-21.1build5","binary_name":"libqt6widgets6t64"},{"binary_version":"6.4.2+dfsg-21.1build5","binary_name":"libqt6xml6t64"},{"binary_version":"6.4.2+dfsg-21.1build5","binary_name":"qmake6"},{"binary_version":"6.4.2+dfsg-21.1build5","binary_name":"qmake6-bin"},{"binary_version":"6.4.2+dfsg-21.1build5","binary_name":"qt6-base-dev-tools"},{"binary_version":"6.4.2+dfsg-21.1build5","binary_name":"qt6-base-doc-html"},{"binary_version":"6.4.2+dfsg-21.1build5","binary_name":"qt6-base-examples"},{"binary_version":"6.4.2+dfsg-21.1build5","binary_name":"qt6-gtk-platformtheme"},{"binary_version":"6.4.2+dfsg-21.1build5","binary_name":"qt6-qpa-plugins"},{"binary_version":"6.4.2+dfsg-21.1build5","binary_name":"qt6-xdgdesktopportal-platformtheme"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-5455.json"}},{"package":{"name":"qtbase-opensource-src","ecosystem":"Ubuntu:24.04:LTS","purl":"pkg:deb/ubuntu/qtbase-opensource-src@5.15.13+dfsg-1ubuntu1?arch=source&distro=noble"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["5.15.10+dfsg-3","5.15.10+dfsg-5","5.15.10+dfsg-5ubuntu1","5.15.12+dfsg-1ubuntu1","5.15.12+dfsg-3ubuntu1","5.15.12+dfsg-3ubuntu6","5.15.12+dfsg-3ubuntu7","5.15.13+dfsg-1ubuntu1"],"ecosystem_specific":{"binaries":[{"binary_version":"5.15.13+dfsg-1ubuntu1","binary_name":"libqt5concurrent5t64"},{"binary_version":"5.15.13+dfsg-1ubuntu1","binary_name":"libqt5core5t64"},{"binary_version":"5.15.13+dfsg-1ubuntu1","binary_name":"libqt5dbus5t64"},{"binary_version":"5.15.13+dfsg-1ubuntu1","binary_name":"libqt5gui5t64"},{"binary_version":"5.15.13+dfsg-1ubuntu1","binary_name":"libqt5network5t64"},{"binary_version":"5.15.13+dfsg-1ubuntu1","binary_name":"libqt5opengl5t64"},{"binary_version":"5.15.13+dfsg-1ubuntu1","binary_name":"libqt5printsupport5t64"},{"binary_version":"5.15.13+dfsg-1ubuntu1","binary_name":"libqt5sql5-ibase"},{"binary_version":"5.15.13+dfsg-1ubuntu1","binary_name":"libqt5sql5-mysql"},{"binary_version":"5.15.13+dfsg-1ubuntu1","binary_name":"libqt5sql5-odbc"},{"binary_version":"5.15.13+dfsg-1ubuntu1","binary_name":"libqt5sql5-psql"},{"binary_version":"5.15.13+dfsg-1ubuntu1","binary_name":"libqt5sql5-sqlite"},{"binary_version":"5.15.13+dfsg-1ubuntu1","binary_name":"libqt5sql5-tds"},{"binary_version":"5.15.13+dfsg-1ubuntu1","binary_name":"libqt5sql5t64"},{"binary_version":"5.15.13+dfsg-1ubuntu1","binary_name":"libqt5test5t64"},{"binary_version":"5.15.13+dfsg-1ubuntu1","binary_name":"libqt5widgets5t64"},{"binary_version":"5.15.13+dfsg-1ubuntu1","binary_name":"libqt5xml5t64"},{"binary_version":"5.15.13+dfsg-1ubuntu1","binary_name":"qt5-gtk-platformtheme"},{"binary_version":"5.15.13+dfsg-1ubuntu1","binary_name":"qt5-qmake"},{"binary_version":"5.15.13+dfsg-1ubuntu1","binary_name":"qt5-qmake-bin"},{"binary_version":"5.15.13+dfsg-1ubuntu1","binary_name":"qt5-xdgdesktopportal-platformtheme"},{"binary_version":"5.15.13+dfsg-1ubuntu1","binary_name":"qtbase5-dev-tools"},{"binary_version":"5.15.13+dfsg-1ubuntu1","binary_name":"qtbase5-doc-html"},{"binary_version":"5.15.13+dfsg-1ubuntu1","binary_name":"qtbase5-examples"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-5455.json"}},{"package":{"name":"qtbase-opensource-src-gles","ecosystem":"Ubuntu:24.04:LTS","purl":"pkg:deb/ubuntu/qtbase-opensource-src-gles@5.15.13+dfsg-1?arch=source&distro=noble"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["5.15.10+dfsg-2","5.15.10+dfsg-3","5.15.12+dfsg-1","5.15.12+dfsg-1ubuntu1","5.15.12+dfsg-1ubuntu2","5.15.13+dfsg-1"],"ecosystem_specific":{"binaries":[{"binary_version":"5.15.13+dfsg-1","binary_name":"libqt5gui5-gles"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-5455.json"}},{"package":{"name":"qt6-base","ecosystem":"Ubuntu:25.10","purl":"pkg:deb/ubuntu/qt6-base@6.9.2+dfsg-1ubuntu1?arch=source&distro=questing"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["6.8.3+dfsg-0ubuntu2","6.8.3+dfsg-0ubuntu3","6.9.2+dfsg-1ubuntu1"],"ecosystem_specific":{"binaries":[{"binary_version":"6.9.2+dfsg-1ubuntu1","binary_name":"libqt6concurrent6"},{"binary_version":"6.9.2+dfsg-1ubuntu1","binary_name":"libqt6core6t64"},{"binary_version":"6.9.2+dfsg-1ubuntu1","binary_name":"libqt6dbus6"},{"binary_version":"6.9.2+dfsg-1ubuntu1","binary_name":"libqt6gui6"},{"binary_version":"6.9.2+dfsg-1ubuntu1","binary_name":"libqt6network6"},{"binary_version":"6.9.2+dfsg-1ubuntu1","binary_name":"libqt6opengl6"},{"binary_version":"6.9.2+dfsg-1ubuntu1","binary_name":"libqt6openglwidgets6"},{"binary_version":"6.9.2+dfsg-1ubuntu1","binary_name":"libqt6printsupport6"},{"binary_version":"6.9.2+dfsg-1ubuntu1","binary_name":"libqt6sql6"},{"binary_version":"6.9.2+dfsg-1ubuntu1","binary_name":"libqt6sql6-ibase"},{"binary_version":"6.9.2+dfsg-1ubuntu1","binary_name":"libqt6sql6-mysql"},{"binary_version":"6.9.2+dfsg-1ubuntu1","binary_name":"libqt6sql6-odbc"},{"binary_version":"6.9.2+dfsg-1ubuntu1","binary_name":"libqt6sql6-psql"},{"binary_version":"6.9.2+dfsg-1ubuntu1","binary_name":"libqt6sql6-sqlite"},{"binary_version":"6.9.2+dfsg-1ubuntu1","binary_name":"libqt6test6"},{"binary_version":"6.9.2+dfsg-1ubuntu1","binary_name":"libqt6widgets6"},{"binary_version":"6.9.2+dfsg-1ubuntu1","binary_name":"libqt6xml6"},{"binary_version":"6.9.2+dfsg-1ubuntu1","binary_name":"qmake6"},{"binary_version":"6.9.2+dfsg-1ubuntu1","binary_name":"qmake6-bin"},{"binary_version":"6.9.2+dfsg-1ubuntu1","binary_name":"qt6-base-dev-tools"},{"binary_version":"6.9.2+dfsg-1ubuntu1","binary_name":"qt6-base-doc-html"},{"binary_version":"6.9.2+dfsg-1ubuntu1","binary_name":"qt6-base-examples"},{"binary_version":"6.9.2+dfsg-1ubuntu1","binary_name":"qt6-gtk-platformtheme"},{"binary_version":"6.9.2+dfsg-1ubuntu1","binary_name":"qt6-qpa-plugins"},{"binary_version":"6.9.2+dfsg-1ubuntu1","binary_name":"qt6-xdgdesktopportal-platformtheme"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-5455.json"}},{"package":{"name":"qtbase-opensource-src-gles","ecosystem":"Ubuntu:25.10","purl":"pkg:deb/ubuntu/qtbase-opensource-src-gles@5.15.17+dfsg-1?arch=source&distro=questing"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["5.15.15+dfsg-2","5.15.17+dfsg-1"],"ecosystem_specific":{"binaries":[{"binary_version":"5.15.17+dfsg-1","binary_name":"libqt5gui5-gles"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-5455.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V4","score":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:H/VA:H/SC:N/SI:H/SA:H/R:U/RE:M/U:Clear"},{"type":"Ubuntu","score":"medium"}]}