Security advisory: Potential Buffer Overflow when reading KTX images

A recently reported potential buffer overflow issue in Qt’s KTX’s image handling has been assigned the CVE id CVE-2024-25580.

An issue was discovered in Qt from 5.12.0 through 5.15.17, 6.x before 6.2.12, 6.3.x through 6.5.x before 6.5.5, and 6.6.x before 6.6.2.

With a specifically crafted KTX image file it is possible that the application reading it could cause an overflow and subsequently a crash.

Solution: Apply the following patch or update to Qt 5.15.17, Qt 6.2.12, Qt 6.5.5 or Qt 6.6.2.


Qt 6.6: or
Qt 6.5: or
Qt 6.2: or
Qt 5.15: or

Blog Topics: