Ubuntu 26.04 QT WebEngine Important Denial Of Service Risk USN-8347-1

ubuntu

May 29, 2026

QT WebEngine could be made to crash or run programs if it received specially crafted input.

Summary

QT WebEngine could be made to crash or run programs if it received specially

crafted input.

Software Description:

- qtwebengine-opensource-src: QT application web browser engine

Details:

It was discovered that the vendored LibTIFF in QT WebEngine incorrectly

handled memory when parsing malformed TIFF image metadata. An attacker

could possibly use this issue to cause a denial of service, obtain

sensitive information, or execute arbitrary code.

Topics Covered

security advisory denial of service Ubuntu important malicious input QtWebEngine

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 26.04 LTS
  libqt5webengine-data            5.15.19+dfsg2-4ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  libqt5webengine5                5.15.19+dfsg2-4ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  libqt5webenginecore5            5.15.19+dfsg2-4ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  libqt5webenginewidgets5         5.15.19+dfsg2-4ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  qml-module-qtwebengine          5.15.19+dfsg2-4ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  qtwebengine5-dev                5.15.19+dfsg2-4ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  qtwebengine5-dev-tools          5.15.19+dfsg2-4ubuntu0.1~esm1
                                  Available with Ubuntu Pro

Ubuntu 24.04 LTS
  libqt5pdf5                      5.15.16+dfsg-3ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  libqt5pdfwidgets5               5.15.16+dfsg-3ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  libqt5webengine-data            5.15.16+dfsg-3ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  libqt5webengine5                5.15.16+dfsg-3ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  libqt5webenginecore5            5.15.16+dfsg-3ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  libqt5webenginewidgets5         5.15.16+dfsg-3ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  qml-module-qtquick-pdf          5.15.16+dfsg-3ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  qml-module-qtwebengine          5.15.16+dfsg-3ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  qt5-image-formats-plugin-pdf    5.15.16+dfsg-3ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  qtpdf5-dev                      5.15.16+dfsg-3ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  qtwebengine5-dev                5.15.16+dfsg-3ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  qtwebengine5-dev-tools          5.15.16+dfsg-3ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  qtwebengine5-private-dev        5.15.16+dfsg-3ubuntu0.1~esm1
                                  Available with Ubuntu Pro

Ubuntu 22.04 LTS
  libqt5pdf5                      5.15.9+dfsg-1ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  libqt5pdfwidgets5               5.15.9+dfsg-1ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  libqt5webengine-data            5.15.9+dfsg-1ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  libqt5webengine5                5.15.9+dfsg-1ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  libqt5webenginecore5            5.15.9+dfsg-1ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  libqt5webenginewidgets5         5.15.9+dfsg-1ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  qml-module-qtquick-pdf          5.15.9+dfsg-1ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  qml-module-qtwebengine          5.15.9+dfsg-1ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  qt5-image-formats-plugin-pdf    5.15.9+dfsg-1ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  qtpdf5-dev                      5.15.9+dfsg-1ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  qtwebengine5-dev                5.15.9+dfsg-1ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  qtwebengine5-dev-tools          5.15.9+dfsg-1ubuntu0.1~esm1
                                  Available with Ubuntu Pro

Ubuntu 20.04 LTS
  libqt5webengine-data            5.12.8+dfsg-0ubuntu1.1+esm1
                                  Available with Ubuntu Pro
  libqt5webengine5                5.12.8+dfsg-0ubuntu1.1+esm1
                                  Available with Ubuntu Pro
  libqt5webenginecore5            5.12.8+dfsg-0ubuntu1.1+esm1
                                  Available with Ubuntu Pro
  libqt5webenginewidgets5         5.12.8+dfsg-0ubuntu1.1+esm1
                                  Available with Ubuntu Pro
  qml-module-qtwebengine          5.12.8+dfsg-0ubuntu1.1+esm1
                                  Available with Ubuntu Pro
  qtwebengine5-dev                5.12.8+dfsg-0ubuntu1.1+esm1
                                  Available with Ubuntu Pro
  qtwebengine5-dev-tools          5.12.8+dfsg-0ubuntu1.1+esm1
                                  Available with Ubuntu Pro

Ubuntu 18.04 LTS
  libqt5webengine-data            5.9.5+dfsg-0ubuntu2+esm1
                                  Available with Ubuntu Pro
  libqt5webengine5                5.9.5+dfsg-0ubuntu2+esm1
                                  Available with Ubuntu Pro
  libqt5webenginecore5            5.9.5+dfsg-0ubuntu2+esm1
                                  Available with Ubuntu Pro
  libqt5webenginewidgets5         5.9.5+dfsg-0ubuntu2+esm1
                                  Available with Ubuntu Pro
  qml-module-qtwebengine          5.9.5+dfsg-0ubuntu2+esm1
                                  Available with Ubuntu Pro
  qtwebengine5-dev                5.9.5+dfsg-0ubuntu2+esm1
                                  Available with Ubuntu Pro
  qtwebengine5-dev-tools          5.9.5+dfsg-0ubuntu2+esm1
                                  Available with Ubuntu Pro

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-8347-1

CVE-2025-9900

Severity

important

Lowest

Low

Medium

High

Critical

Ubuntu Security Notice USN-8347-1

Topics Covered

security advisory denial of service Ubuntu important malicious input QtWebEngine

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Ubuntu 26.04 QT WebEngine Important Denial Of Service Risk USN-8347-1

Summary

Topics Covered

Update Instructions

References

Topics Covered

Package Information

Get the latest News and Insights

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Ubuntu 26.04 QT WebEngine Important Denial Of Service Risk USN-8347-1

Summary

Topics Covered

Update Instructions

References

Topics Covered

Package Information

Get the latest News and Insights

Related Articles

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!