diff -pruN 6.4.2-1/debian/changelog 6.4.2-2/debian/changelog --- 6.4.2-1/debian/changelog 2023-01-28 23:40:19.000000000 +0000 +++ 6.4.2-2/debian/changelog 2023-05-22 13:48:50.000000000 +0000 @@ -1,3 +1,10 @@ +qt6-svg (6.4.2-2) unstable; urgency=medium + + * Team upload. + * Add patch to solve CVE-2023-32573. + + -- Lisandro Damián Nicanor Pérez Meyer Mon, 22 May 2023 10:48:50 -0300 + qt6-svg (6.4.2-1) unstable; urgency=medium [ Patrick Franz ] diff -pruN 6.4.2-1/debian/patches/cve-2023-32573.diff 6.4.2-2/debian/patches/cve-2023-32573.diff --- 6.4.2-1/debian/patches/cve-2023-32573.diff 1970-01-01 00:00:00.000000000 +0000 +++ 6.4.2-2/debian/patches/cve-2023-32573.diff 2023-05-22 13:46:14.000000000 +0000 @@ -0,0 +1,37 @@ +--- + src/svg/qsvgfont_p.h | 5 ++--- + src/svg/qsvghandler.cpp | 2 +- + 2 files changed, 3 insertions(+), 4 deletions(-) + +--- a/src/svg/qsvgfont_p.h ++++ b/src/svg/qsvgfont_p.h +@@ -38,6 +38,7 @@ public: + class Q_SVG_PRIVATE_EXPORT QSvgFont : public QSvgRefCounted + { + public: ++ static constexpr qreal DEFAULT_UNITS_PER_EM = 1000; + QSvgFont(qreal horizAdvX); + + void setFamilyName(const QString &name); +@@ -50,9 +51,7 @@ public: + void draw(QPainter *p, const QPointF &point, const QString &str, qreal pixelSize, Qt::Alignment alignment) const; + public: + QString m_familyName; +- qreal m_unitsPerEm; +- qreal m_ascent; +- qreal m_descent; ++ qreal m_unitsPerEm = DEFAULT_UNITS_PER_EM; + qreal m_horizAdvX; + QHash m_glyphs; + }; +--- a/src/svg/qsvghandler.cpp ++++ b/src/svg/qsvghandler.cpp +@@ -2622,7 +2622,7 @@ static bool parseFontFaceNode(QSvgStyleP + + qreal unitsPerEm = toDouble(unitsPerEmStr); + if (!unitsPerEm) +- unitsPerEm = 1000; ++ unitsPerEm = QSvgFont::DEFAULT_UNITS_PER_EM; + + if (!name.isEmpty()) + font->setFamilyName(name); diff -pruN 6.4.2-1/debian/patches/series 6.4.2-2/debian/patches/series --- 6.4.2-1/debian/patches/series 1970-01-01 00:00:00.000000000 +0000 +++ 6.4.2-2/debian/patches/series 2023-05-22 13:45:06.000000000 +0000 @@ -0,0 +1,2 @@ +# Fixed in 6.5. +cve-2023-32573.diff