{ "CVE_data_meta": { "ASSIGNER": "secalert@redhat.com", "ID": "CVE-2013-4549", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "QXmlSimpleReader in Qt before 5.2 allows context-dependent attackers to cause a denial of service (memory consumption) via an XML Entity Expansion (XEE) attack." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "[qt-announce] 20131205 [Announce] Qt Project Security Advisory: XML Entity Expansion\tDenial of Service", "refsource": "MLIST", "url": "http://lists.qt-project.org/pipermail/announce/2013-December/000036.html" }, { "name": "56166", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/56166" }, { "name": "openSUSE-SU-2014:0173", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00104.html" }, { "name": "56008", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/56008" }, { "name": "openSUSE-SU-2014:0125", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00085.html" }, { "name": "https://codereview.qt-project.org/#change,71010", "refsource": "CONFIRM", "url": "https://codereview.qt-project.org/#change,71010" }, { "name": "openSUSE-SU-2014:0176", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00106.html" }, { "name": "openSUSE-SU-2014:0067", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00044.html" }, { "name": "http://blog.qt.digia.com/blog/2014/04/24/qt-4-8-6-released/", "refsource": "CONFIRM", "url": "http://blog.qt.digia.com/blog/2014/04/24/qt-4-8-6-released/" }, { "name": "USN-2057-1", "refsource": "UBUNTU", "url": "http://www.ubuntu.com/usn/USN-2057-1" }, { "name": "https://codereview.qt-project.org/#change,71368", "refsource": "CONFIRM", "url": "https://codereview.qt-project.org/#change,71368" }, { "name": "openSUSE-SU-2014:0070", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00047.html" }, { "name": "FEDORA-2014-5695", "refsource": "FEDORA", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-May/132395.html" } ] } }