Skip to content
Permalink
main
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
Go to file
 
 
Cannot retrieve contributors at this time
id: OSV-2021-1121
summary: UNKNOWN WRITE in QtPrivate::QCommonArrayOps<QPainterPath::Element>::growAppend
details: |
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=37025
This is the same issue as OSV-2021-1143 which replaced this one after it was closed wrongly.
```
Crash type: UNKNOWN WRITE
Crash state:
QtPrivate::QCommonArrayOps<QPainterPath::Element>::growAppend
QPainterPath::addPath
QPathClipper::intersect
```
modified: '2023-04-20T22:46:19.937028Z'
published: '2021-08-12T00:00:36.570149Z'
references:
- type: REPORT
url: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=37025
affected:
- package:
name: qt
ecosystem: OSS-Fuzz
ranges:
- type: GIT
repo: git://code.qt.io/qt/qtsvg.git
events:
- introduced: '0'
- fixed: a3b753c2d077313fc9eb93af547051b956e383fc
- fixed: 79bb9f51fa374106a612d17c9d98d35d807be670
- fixed: 36cfd9efb9b22b891adee9c48d30202289cfa620
- fixed: 6958581c5cfa6ceb75edcd8b64699b2e71af29f7
- fixed: e8a86ab6c84f6618fae6f961c34c25ef42e91332
versions:
- qt-v5.0.0-alpha1
- v5.0.0
- v5.0.0-beta1
- v5.0.0-beta2
- v5.0.0-rc1
- v5.0.0-rc2
- v5.0.1
- v5.0.2
- v5.1.0
- v5.1.0-alpha1
- v5.1.0-beta1
- v5.1.0-rc1
- v5.1.0-rc2
- v5.1.1
- v5.10.0
- v5.10.0-alpha1
- v5.10.0-beta1
- v5.10.0-beta2
- v5.10.0-beta3
- v5.10.0-beta4
- v5.10.0-rc1
- v5.10.0-rc2
- v5.10.0-rc3
- v5.10.1
- v5.11.0
- v5.11.0-alpha1
- v5.11.0-beta1
- v5.11.0-beta2
- v5.11.0-beta3
- v5.11.0-beta4
- v5.11.0-rc1
- v5.11.0-rc2
- v5.11.1
- v5.11.2
- v5.11.3
- v5.12.0
- v5.12.0-alpha1
- v5.12.0-beta1
- v5.12.0-beta2
- v5.12.0-beta3
- v5.12.0-beta4
- v5.12.0-rc1
- v5.12.0-rc2
- v5.12.1
- v5.12.11
- v5.12.2
- v5.12.3
- v5.12.4
- v5.12.5
- v5.12.6
- v5.12.7
- v5.12.8
- v5.12.9
- v5.13.0
- v5.13.0-alpha1
- v5.13.0-beta1
- v5.13.0-beta2
- v5.13.0-beta3
- v5.13.0-beta4
- v5.13.0-rc1
- v5.13.0-rc2
- v5.13.0-rc3
- v5.13.1
- v5.13.2
- v5.14.0
- v5.14.0-alpha1
- v5.14.0-beta1
- v5.14.0-beta2
- v5.14.0-beta3
- v5.14.0-rc1
- v5.14.0-rc2
- v5.14.1
- v5.14.2
- v5.15.0
- v5.15.0-alpha1
- v5.15.0-beta1
- v5.15.0-beta2
- v5.15.0-beta3
- v5.15.0-beta4
- v5.15.0-rc1
- v5.15.0-rc2
- v5.2.0
- v5.2.0-alpha1
- v5.2.0-beta1
- v5.2.0-rc1
- v5.2.1
- v5.3.0
- v5.3.0-alpha1
- v5.3.0-beta1
- v5.3.0-rc1
- v5.3.1
- v5.3.2
- v5.4.0
- v5.4.0-alpha1
- v5.4.0-beta1
- v5.4.0-rc1
- v5.4.1
- v5.4.2
- v5.5.0
- v5.5.0-alpha1
- v5.5.0-beta1
- v5.5.0-rc1
- v5.5.1
- v5.6.0
- v5.6.0-alpha1
- v5.6.0-beta1
- v5.6.0-rc1
- v5.6.1
- v5.6.1-1
- v5.6.2
- v5.6.3
- v5.7.0
- v5.7.0-alpha1
- v5.7.0-beta1
- v5.7.0-rc1
- v5.7.1
- v5.8.0
- v5.8.0-alpha1
- v5.8.0-beta1
- v5.8.0-rc1
- v5.9.0
- v5.9.0-alpha1
- v5.9.0-beta1
- v5.9.0-beta2
- v5.9.0-beta3
- v5.9.0-beta4
- v5.9.0-rc1
- v5.9.0-rc2
- v5.9.1
- v5.9.2
- v5.9.3
- v5.9.4
- v5.9.5
- v5.9.6
- v5.9.7
- v5.9.8
- v5.9.9
- v6.0.0-alpha1
- v6.0.0-beta1
- v6.0.0-beta2
- v6.0.0-beta3
- v6.0.0-beta4
- v6.0.0-beta5
- v6.0.1
- v6.0.2
- v6.0.3
- v6.0.4
- v6.1.0-alpha1
- v6.1.0-beta1
- v6.1.0-beta2
- v6.1.0-beta3
- v6.2.0
- v6.2.0-alpha1
- v6.2.0-beta1
- v6.2.0-beta2
- v6.2.0-beta3
- v6.2.0-beta4
- v6.2.0-rc1
- v6.2.0-rc2
ecosystem_specific:
introduced_range: 1c17b656e0c7b3f5fae598a0915fdebfeb822dae:f1b826440d0c9407b08329bb563b95781d6aeb6b
severity: HIGH
database_specific:
fixed_range: e3834034f88af27d48f2f7a2cc6ab0c84d6faf1e:e8a86ab6c84f6618fae6f961c34c25ef42e91332