Doc: QPicture uses QDataStream, forward warning against untrusted data

Make this explicit, with a link. Change-Id: I8b8b64c88daacba43df1eecf5a347c0a89d837e1 Reviewed-by: Eskil Abrahamsen Blomfeldt <eskil.abrahamsen-blomfeldt@qt.io> (cherry picked from commit ca26e804501d0fba45b703e281f48b3e90584335) Reviewed-by: Qt Cherry-pick Bot <cherrypick_bot@qt-project.org> (cherry picked from commit 3e2fcff4780556bb2a093101159a228a745bc4e0)
2025-03-10 14:39:53 +01:00 · 2025-03-10 14:39:53 +01:00 · 0e42220d41
commit 0e42220d41
parent 638052637d
1 changed files with 4 additions and 0 deletions
--- a/src/gui/image/qpicture.cpp
+++ b/src/gui/image/qpicture.cpp
@ -69,6 +69,10 @@ void qt_format_text(const QFont &fnt, const QRectF &_r,
    picture is available, for example, size(), isNull() and
    boundingRect().

+    \note QPicture uses QDataStream for serialization. The
+    \l {QDataStream#Corruption and Security}{same reservations} against
+    reading untrusted data apply.
+
    \sa QMovie
 */