A recently reported issue regarding the loading of specifically crafted wave files in dr_wav has been confirmed as impacting the Qt Multimedia module.
Affected versions: From 6.10.0 through to 6.10.2
Impact: This is a reported issue for the 3rd party component – dr_wav – which is used in Qt Multimedia and will be fixed in version 0.14.6 of dr_wav. This impacts Qt Multimedia when using these files as it can cause a crash in Qt.
Mitigation: Ensure that all wave files are only from trusted sources.
Solution: Apply the following patches or update to Qt 6.10.3 or 6.11.0
Patches:
dev: https://codereview.qt-project.org/c/qt/qtmultimedia/+/718730 and https://codereview.qt-project.org/c/qt/qtmultimedia/+/719013
Qt 6.10: https://download.qt.io/official_releases/qt/6.10/dr_wav-qtmultimedia-6.10.patch or https://codereview.qt-project.org/c/qt/qtmultimedia/+/718944 and https://codereview.qt-project.org/c/qt/qtmultimedia/+/719206
