Alerts This Week
Warning Icon 1 1,149
Alerts This Week
Warning Icon 1 1,149

Ubuntu 22.04 LTS: Qt Critical Denial of Service Risk 2025:7923-1

ubuntu
Calendar Grey December 11, 2025
Dist Ubuntu Esm H88
Examine the critical Qt security advisory for Ubuntu, which may allow denial of service or execution of code.
Qt could be made to crash or run programs as your login if it opened a specially crafted file.

Summary

Qt could be made to crash or run programs as your login if it

opened a specially crafted file.

Software Description:

- qtbase-opensource-src: Qt 5 libraries

Details:

It was discovered that Qt did not correctly handle certain memory

operations. If a user or automated system were tricked into opening a

specially crafted file, an attacker could possibly use this issue to

cause a denial of service or execute arbitrary code.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 22.04 LTS
  libqt5core5a                    5.15.3+dfsg-2ubuntu0.2+esm2
                                  Available with Ubuntu Pro
  libqt5gui5                      5.15.3+dfsg-2ubuntu0.2+esm2
                                  Available with Ubuntu Pro

Ubuntu 20.04 LTS
  libqt5core5a                    5.12.8+dfsg-0ubuntu2.1+esm2
                                  Available with Ubuntu Pro
  libqt5gui5                      5.12.8+dfsg-0ubuntu2.1+esm2
                                  Available with Ubuntu Pro

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-7923-1

CVE-2024-25580

Severity
critical
Lowest
Low
Medium
High
Critical

Ubuntu Security Notice USN-7923-1

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here