Login
Newsletter
Werbung

Sicherheit: Mehrere Probleme in Qt
Aktuelle Meldungen Distributionen
Name: Mehrere Probleme in Qt
ID: FEDORA-2015-6613
Distribution: Fedora
Plattformen: Fedora 22
Datum: Sa, 25. April 2015, 10:22
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1858
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1859
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1860
Applikationen: Qt

Originalnachricht

Name        : qt3
Product : Fedora 22
Version : 3.3.8b
Release : 63.fc22
URL : http://www.troll.no
Summary : The shared library for the Qt 3 GUI toolkit
Description :
Qt is a GUI software toolkit which simplifies the task of writing and
maintaining GUI (Graphical User Interface) applications
for the X Window System.

Qt is written in C++ and is fully object-oriented.

This package contains the shared library needed to run Qt 3
applications, as well as the README files for Qt 3.

-------------------------------------------------------------------------------
-
Update Information:

This update fixes CVE-2015-1860, a buffer overflow when loading some specific
invalid GIF image files, which could be exploited for denial of service (application crash) and possibly even arbitrary code execution attacks. The security patch is backported from Qt 4.

(Please note that Qt 3 is NOT vulnerable to the simultaneously published issues
CVE-2015-1858 and CVE-2015-1859.)
-------------------------------------------------------------------------------
-
References:

[ 1 ] Bug #1210675 - CVE-2015-1860 qt: segmentation fault in qgifhandler.cpp
https://bugzilla.redhat.com/show_bug.cgi?id=1210675
-------------------------------------------------------------------------------
-

This update can be installed with the "yum" update program. Use
su -c 'yum update qt3' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce
Pro-Linux
Pro-Linux @Facebook
Neue Nachrichten
Werbung