A Heap-buffer-overflow issue in QTextMarkdownImporter has been discovered and has been assigned the CVE id CVE-2025-3512.
Affected versions: From 6.8.0 up to 6.8.3. Versions before 6.6.0 are known to be unaffected. Impact: Passing an incorrectly formatted markdown file to QTextMarkdownImporter can trigger a heap-buffer-overflow. Solution: Apply the following patch or update to Qt 6.9.0 or 6.8.4 Patches: Qt 6.8: https://codereview.qt-project.org/c/qt/qtbase/+/635699 or https://download.qt.io/official_releases/qt/6.8/CVE-2025-3512-qtbase-6.8.diff ______________________ Tuukka Kettunen Senior Manager, Technical Customer Success The Qt Company Tutkijantie 4C FI-90590 Oulu Finland www.qt.io<https://www.qt.io/> [cid:image001.png@01DBAD34.6D3758D0]<https://www.qt.io/> [cid:image002.png@01DBAD34.6D3758D0]<https://www.facebook.com/qt/> [cid:image003.png@01DBAD34.6D3758D0]<https://twitter.com/qtproject> [cid:image004.png@01DBAD34.6D3758D0]<https://www.linkedin.com/company/the-qt-company/> [cid:image005.png@01DBAD34.6D3758D0]<https://www.youtube.com/QtStudios>
_______________________________________________ Announce mailing list annou...@qt-project.org https://lists.qt-project.org/listinfo/announce
-- Development mailing list Development@qt-project.org https://lists.qt-project.org/listinfo/development
