[ubuntu/cosmic-security] qtbase-opensource-src 5.11.1+dfsg-7ubuntu3.1 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Mon Jun 3 15:32:45 UTC 2019
qtbase-opensource-src (5.11.1+dfsg-7ubuntu3.1) cosmic-security; urgency=medium
* SECURITY UPDATE: double-free or corruption via illegal XML document
- debian/patches/CVE-2018-15518.patch: fix possible heap corruption in
QXmlStream in src/corelib/serialization/qxmlstream_p.h.
- CVE-2018-15518
* SECURITY UPDATE: NULL pointer dereference in QGifHandler
- debian/patches/CVE-2018-19870.patch: check for QImage allocation
failure in src/plugins/imageformats/gif/qgifhandler.cpp.
- CVE-2018-19870
* SECURITY UPDATE: buffer overflow in QBmpHandler
- debian/patches/CVE-2018-19873.patch: check for out of range image
size in src/gui/image/qbmphandler.cpp.
- CVE-2018-19873
Date: 2019-03-25 16:56:12.771316+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/qtbase-opensource-src/5.11.1+dfsg-7ubuntu3.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Cosmic-changes
mailing list