diff --git a/CVE-2023-32573.patch b/CVE-2023-32573.patch
new file mode 100644
index 0000000000000000000000000000000000000000..be35253025d256894eaf413c7d6dddc40dcc331b
--- /dev/null
+++ b/CVE-2023-32573.patch
@@ -0,0 +1,34 @@
+diff -up qt-everywhere-opensource-src-4.8.7/src/svg/qsvgfont_p.h.me qt-everywhere-opensource-src-4.8.7/src/svg/qsvgfont_p.h
+--- qt-everywhere-opensource-src-4.8.7/src/svg/qsvgfont_p.h.me	2023-05-18 14:45:36.239081107 +0200
++++ qt-everywhere-opensource-src-4.8.7/src/svg/qsvgfont_p.h	2023-05-18 14:47:11.440869275 +0200
+@@ -78,6 +78,7 @@ public:
+ class QSvgFont : public QSvgRefCounted
+ {
+ public:
++    static const qreal DEFAULT_UNITS_PER_EM = 1000;
+     QSvgFont(qreal horizAdvX);
+ 
+     void setFamilyName(const QString &name);
+@@ -90,9 +91,7 @@ public:
+     void draw(QPainter *p, const QPointF &point, const QString &str, qreal pixelSize, Qt::Alignment alignment) const;
+ public:
+     QString m_familyName;
+-    qreal m_unitsPerEm;
+-    qreal m_ascent;
+-    qreal m_descent;
++    qreal m_unitsPerEm = DEFAULT_UNITS_PER_EM;
+     qreal m_horizAdvX;
+     QHash<QChar, QSvgGlyph> m_glyphs;
+ };
+diff -up qt-everywhere-opensource-src-4.8.7/src/svg/qsvghandler.cpp.me qt-everywhere-opensource-src-4.8.7/src/svg/qsvghandler.cpp
+--- qt-everywhere-opensource-src-4.8.7/src/svg/qsvghandler.cpp.me	2023-05-18 14:45:24.569107055 +0200
++++ qt-everywhere-opensource-src-4.8.7/src/svg/qsvghandler.cpp	2023-05-18 14:45:10.885137479 +0200
+@@ -2571,7 +2571,7 @@ static bool parseFontFaceNode(QSvgStyleP
+ 
+     qreal unitsPerEm = toDouble(unitsPerEmStr);
+     if (!unitsPerEm)
+-        unitsPerEm = 1000;
++        unitsPerEm = QSvgFont::DEFAULT_UNITS_PER_EM;
+ 
+     if (!name.isEmpty())
+         font->setFamilyName(name);
diff --git a/qt.spec b/qt.spec
index 270c886db536f73f5e3da691d9bcc6a12040eb97..cbddb7993fbe038aa6b85779f6d2dc19e1dad523 100644
--- a/qt.spec
+++ b/qt.spec
@@ -13,7 +13,7 @@
 Name:           qt
 Epoch:          1
 Version:        4.8.7
-Release:        50
+Release:        51
 Summary:        A software toolkit for developing applications
 License:        (LGPLv2 with exceptions or GPLv3 with exceptions) and ASL 2.0 and BSD and FTL and MIT
 URL:            http://qt-project.org/
@@ -79,6 +79,7 @@ Patch6003:      CVE-2018-19870.patch
 Patch6004:      CVE-2018-19873.patch
 Patch6005:      CVE-2020-17507.patch
 Patch6006:      CVE-2020-0570.patch
+Patch6007:      CVE-2023-32573.patch
 
 BuildRequires:  cups-devel desktop-file-utils gcc-c++ libjpeg-devel findutils libmng-devel libtiff-devel pkgconfig pkgconfig(alsa)
 BuildRequires:  pkgconfig(dbus-1) pkgconfig(fontconfig) pkgconfig(glib-2.0) pkgconfig(icu-i18n) openssl-devel pkgconfig(libpng)
@@ -445,6 +446,12 @@ fi
 %{_qt4_prefix}/examples/
 
 %changelog
+* Mon Aug 21 2023 peijiankang<peijiankang@kylinos.cn> - 1:4.8.7-51
+- Type:cves
+- ID:CVE-2023-32573
+- SUG:NA
+- DESC:fix CVE-2023-32573
+
 * Wed Oct 14 2020 wangyue <wangyue92@huawei.com> - 1:4.8.7-50
 - fix CVE-2020-0570