Wind River Support Network


LIN1021-5112 : Security Advisory - qtdeclarative - CVE-2022-40983

Created: Jan 19, 2023    Updated: Jan 30, 2023
Found In Version:
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Userspace


An integer overflow vulnerability exists in the QML QtScript Reflect API of Qt Project Qt 6.3.2. A specially-crafted javascript code can trigger an integer overflow during memory allocation, which can lead to arbitrary code execution. Target application would need to access a malicious web page to trigger this vulnerability.

CREATE(Triage):(User=admin) CVE-2022-40983 (
Live chat