An issue was discovered in Qt before 5.15.15, 6.x before 6.2.10, and 6.3.x through 6.5.x before 6.5.3. There are infinite loops in recursive entity expansion. https://codereview.qt-project.org/c/qt/qtbase/+/488960 QXmlStreamReader accepted multiple DOCTYPE elements, containing DTD fragments in the XML prolog, and in the XML body. Well-formed but invalid XML files - with multiple DTD fragments in prolog and body, combined with recursive entity expansions - have caused infinite loops in QXmlStreamReader.
Created mingw-qt5-qtbase tracking bugs for this issue: Affects: fedora-all [bug 2222847] Created mingw-qt6-qtbase tracking bugs for this issue: Affects: fedora-all [bug 2222848] Created qt5-qtbase tracking bugs for this issue: Affects: fedora-all [bug 2222849] Created qt6-qtbase tracking bugs for this issue: Affects: fedora-all [bug 2222850]
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2023:6369 https://access.redhat.com/errata/RHSA-2023:6369
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2023:6967 https://access.redhat.com/errata/RHSA-2023:6967