|
|
Subscribe / Log in / New account

Mageia alert MGASA-2020-0192 (qtbase5)



From:
              Mageia Updates <buildsystem-daemon@mageia.org> 


To:
              updates-announce@ml.mageia.org 


Subject:
              [updates-announce] MGASA-2020-0192: Updated qtbase5 packages fix security vulnerability 


Date:
              Tue, 5 May 2020 14:21:53 +0200


Message-ID:
              <20200505122153.2E7F29F640@duvel.mageia.org>


MGASA-2020-0192 - Updated qtbase5 packages fix security vulnerability

Publication date: 05 May 2020
URL: https://advisories.mageia.org/MGASA-2020-0192.html
Type: security
Affected Mageia releases: 7
CVE: CVE-2015-9541

Description:
Updated qtbase5 packages fix security vulnerability:

An XML Entity Expansion flaw was found in the QT library. Applications that
use QT to load untrusted images, for example, SVG images, or untrusted XML
documents, may be vulnerable to this flaw. This flaw allows an attacker to
cause a denial of service (CVE-2015-9541).

References:
- https://bugs.mageia.org/show_bug.cgi?id=26554
-
https://lists.fedoraproject.org/archives/list/package-ann...
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-9541

SRPMS:
- 7/core/qtbase5-5.12.6-3.mga7
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds