Security update for qt6-connectivity SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2025:0033-1 Final 1 1 2025-01-25T17:01:16Z current 2025-01-25T17:01:16Z 2025-01-25T17:01:16Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for qt6-connectivity This update for qt6-connectivity fixes the following issues: - CVE-2025-23050: Fixed buffer over-read and division by zero (boo#1236237) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-2025-33 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/HWBTFAFOPUNR57AYROD5W4R5QZH3R723/ E-Mail link for openSUSE-SU-2025:0033-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1236237 SUSE Bug 1236237 https://www.suse.com/security/cve/CVE-2025-23050/ SUSE CVE CVE-2025-23050 page SUSE Package Hub 15 SP6 openSUSE Leap 15.6 libQt6Bluetooth6-6.6.3-bp156.2.3.1 libQt6Nfc6-6.6.3-bp156.2.3.1 qt6-connectivity-6.6.3-bp156.2.3.1 qt6-connectivity-devel-6.6.3-bp156.2.3.1 qt6-connectivity-docs-html-6.6.3-bp156.2.3.1 qt6-connectivity-docs-qch-6.6.3-bp156.2.3.1 qt6-connectivity-examples-6.6.3-bp156.2.3.1 qt6-connectivity-private-devel-6.6.3-bp156.2.3.1 libQt6Bluetooth6-6.6.3-bp156.2.3.1 as a component of SUSE Package Hub 15 SP6 libQt6Nfc6-6.6.3-bp156.2.3.1 as a component of SUSE Package Hub 15 SP6 qt6-connectivity-6.6.3-bp156.2.3.1 as a component of SUSE Package Hub 15 SP6 qt6-connectivity-devel-6.6.3-bp156.2.3.1 as a component of SUSE Package Hub 15 SP6 qt6-connectivity-docs-html-6.6.3-bp156.2.3.1 as a component of SUSE Package Hub 15 SP6 qt6-connectivity-docs-qch-6.6.3-bp156.2.3.1 as a component of SUSE Package Hub 15 SP6 qt6-connectivity-examples-6.6.3-bp156.2.3.1 as a component of SUSE Package Hub 15 SP6 qt6-connectivity-private-devel-6.6.3-bp156.2.3.1 as a component of SUSE Package Hub 15 SP6 libQt6Bluetooth6-6.6.3-bp156.2.3.1 as a component of openSUSE Leap 15.6 libQt6Nfc6-6.6.3-bp156.2.3.1 as a component of openSUSE Leap 15.6 qt6-connectivity-6.6.3-bp156.2.3.1 as a component of openSUSE Leap 15.6 qt6-connectivity-devel-6.6.3-bp156.2.3.1 as a component of openSUSE Leap 15.6 qt6-connectivity-docs-html-6.6.3-bp156.2.3.1 as a component of openSUSE Leap 15.6 qt6-connectivity-docs-qch-6.6.3-bp156.2.3.1 as a component of openSUSE Leap 15.6 qt6-connectivity-examples-6.6.3-bp156.2.3.1 as a component of openSUSE Leap 15.6 qt6-connectivity-private-devel-6.6.3-bp156.2.3.1 as a component of openSUSE Leap 15.6 ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVE-2025-23050 SUSE Package Hub 15 SP6:libQt6Bluetooth6-6.6.3-bp156.2.3.1 SUSE Package Hub 15 SP6:libQt6Nfc6-6.6.3-bp156.2.3.1 SUSE Package Hub 15 SP6:qt6-connectivity-6.6.3-bp156.2.3.1 SUSE Package Hub 15 SP6:qt6-connectivity-devel-6.6.3-bp156.2.3.1 SUSE Package Hub 15 SP6:qt6-connectivity-docs-html-6.6.3-bp156.2.3.1 SUSE Package Hub 15 SP6:qt6-connectivity-docs-qch-6.6.3-bp156.2.3.1 SUSE Package Hub 15 SP6:qt6-connectivity-examples-6.6.3-bp156.2.3.1 SUSE Package Hub 15 SP6:qt6-connectivity-private-devel-6.6.3-bp156.2.3.1 openSUSE Leap 15.6:libQt6Bluetooth6-6.6.3-bp156.2.3.1 openSUSE Leap 15.6:libQt6Nfc6-6.6.3-bp156.2.3.1 openSUSE Leap 15.6:qt6-connectivity-6.6.3-bp156.2.3.1 openSUSE Leap 15.6:qt6-connectivity-devel-6.6.3-bp156.2.3.1 openSUSE Leap 15.6:qt6-connectivity-docs-html-6.6.3-bp156.2.3.1 openSUSE Leap 15.6:qt6-connectivity-docs-qch-6.6.3-bp156.2.3.1 openSUSE Leap 15.6:qt6-connectivity-examples-6.6.3-bp156.2.3.1 openSUSE Leap 15.6:qt6-connectivity-private-devel-6.6.3-bp156.2.3.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/HWBTFAFOPUNR57AYROD5W4R5QZH3R723/ https://www.suse.com/security/cve/CVE-2025-23050.html CVE-2025-23050 https://bugzilla.suse.com/1236237 SUSE Bug 1236237