LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

qt: information disclosure

Package(s):qt CVE #(s):CVE-2013-0254
Created:February 13, 2013 Updated:March 22, 2013
Description: From the Red Hat bugzilla:

A security flaw was found in the way QSharedMemory class implementation of the Qt toolkit created shared memory segments (they were created with world-readable and world-writeable permissions). A local attacker could use this flaw to read or alter content of particular shared memory segment, possibly leading to their ability to obtain sensitive information or influence behaviour of shared memory segment reader process.

Alerts:
Fedora FEDORA-2013-2041 2013-02-13
Ubuntu USN-1723-1 2013-02-14
Mageia MGASA-2013-0053 2013-02-16
Fedora FEDORA-2013-1997 2013-02-24
openSUSE openSUSE-SU-2013:0404-1 2013-03-07
openSUSE openSUSE-SU-2013:0403-1 2013-03-07
openSUSE openSUSE-SU-2013:0411-1 2013-03-09
Red Hat RHSA-2013:0669-01 2013-03-21
CentOS CESA-2013:0669 2013-03-21
Oracle ELSA-2013-0669 2013-03-21
Scientific Linux SL-qt-20130321 2013-03-21
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds