[ubuntu/xenial-security] qtbase-opensource-src 5.5.1+dfsg-16ubuntu7.7 (Accepted)

Mon Feb 10 13:21:00 UTC 2020

qtbase-opensource-src (5.5.1+dfsg-16ubuntu7.7) xenial-security; urgency=medium

  * SECURITY UPDATE: division-by-zero via malformed PPM image
    - debian/patches/CVE-2018-19872.patch: add extra check to
      src/gui/image/qppmhandler.cpp.
    - CVE-2018-19872
  * SECURITY UPDATE: QPluginLoader loads plugins from the CWD
    - debian/patches/CVE-2020-0569.patch: do not load plugin from the $PWD
      in src/corelib/plugin/qpluginloader.cpp.
    - CVE-2020-0569

Date: 2020-02-09 18:47:15.279014+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/qtbase-opensource-src/5.5.1+dfsg-16ubuntu7.7
-------------- next part --------------
Sorry, changesfile not available.