Ubuntu 24.04 Critical Qt Declarative Resource Exhaustion USN-8357-1
ubuntu
June 1, 2026
Qt Declarative could be made to use excessive resources if it received specially crafted input.
Summary
Qt Declarative could be made to use excessive resources if it received
specially crafted input.
Software Description:
- qtdeclarative-opensource-src: Qt 5 declarative modules
Details:
It was discovered that Qt Declarative did not properly validate the
width and height attributes of image tags in the Text component of Qt
Quick. An attacker could possibly use this issue to cause Qt Declarative
to use excessive resources, leading to a denial of service.
Topics Covered
Update Instructions
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 24.04 LTS
libqt5quick5 5.15.13+dfsg-1ubuntu0.1+esm1
Available with Ubuntu Pro
Ubuntu 22.04 LTS
libqt5quick5 5.15.3+dfsg-1ubuntu0.1~esm1
Available with Ubuntu Pro
Ubuntu 20.04 LTS
libqt5quick5 5.12.8-0ubuntu1+esm1
Available with Ubuntu Pro
In general, a standard system update will make all the necessary changes.References
https://ubuntu.com/security/notices/USN-8357-1
CVE-2025-12385
PREVIOUS 
NEXT Severity
critical
Lowest
Low
Medium
High
Critical
Ubuntu Security Notice USN-8357-1
Topics Covered
Package Information
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!