Mageia alert MGASA-2018-0284 (qt3)


From:
    	       Mageia Updates <buildsystem-daemon@mageia.org> 
To:
    	       updates-announce@ml.mageia.org 
Subject:
    	       [updates-announce] MGASA-2018-0284: Updated qt3 packages fix security vulnerability 
Date:
    	       Thu, 14 Jun 2018 20:15:39 +0200
Message-ID:
    	       <20180614181539.75307A00FF@duvel.mageia.org>
MGASA-2018-0284 - Updated qt3 packages fix security vulnerability

Publication date: 14 Jun 2018
URL: https://advisories.mageia.org/MGASA-2018-0284.html
Type: security
Affected Mageia releases: 6
CVE: CVE-2016-10040

Description:
Updated qt3 packages fix security vulnerability:

A stack overflow flaw was found in the way Qt parsed XML input with several
nested opening tags. An application using Qt's QXmlSimpleReader to parse
specially crafted XML input could crash (CVE-2016-10040).

References:
- https://bugs.mageia.org/show_bug.cgi?id=23166
-
https://lists.fedoraproject.org/archives/list/package-ann...
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1...

SRPMS:
- 6/core/qt3-3.3.8b-42.1.mga6

From:		Mageia Updates <buildsystem-daemon@mageia.org>
To:		updates-announce@ml.mageia.org
Subject:		[updates-announce] MGASA-2018-0284: Updated qt3 packages fix security vulnerability
Date:		Thu, 14 Jun 2018 20:15:39 +0200
Message-ID:		<20180614181539.75307A00FF@duvel.mageia.org>