The QSvg module in Qt, as used in the Mumble client 1.2.x before 1.2.6, allows remote attackers to cause a denial of service (hang and resource consumption) via a local file reference in an (1) image tag or (2) XML stylesheet in an SVG file.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Mumble | Mumble | 1.2.0 | 1.2.0 |
Mumble | Mumble | 1.2.3 | 1.2.3 |
Mumble | Mumble | 1.2.2 | 1.2.2 |
Mumble | Mumble | 1.2.4 | 1.2.4 |
Mumble | Mumble | 1.2.3 | 1.2.3 |
Mumble | Mumble | 1.2.3 | 1.2.3 |
Mumble | Mumble | 1.2.4 | 1.2.4 |
Mumble | Mumble | * | 1.2.5 |
Mumble | Mumble | 1.2.4 | 1.2.4 |
Mumble | Mumble | 1.2.3 | 1.2.3 |
Mumble | Mumble | 1.2.1 | 1.2.1 |