[ubuntu/xenial-updates] qtbase-opensource-src 5.5.1+dfsg-16ubuntu7.7 (Accepted)
Ubuntu Archive Robot
cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk
Mon Feb 10 13:58:52 UTC 2020
qtbase-opensource-src (5.5.1+dfsg-16ubuntu7.7) xenial-security; urgency=medium
* SECURITY UPDATE: division-by-zero via malformed PPM image
- debian/patches/CVE-2018-19872.patch: add extra check to
src/gui/image/qppmhandler.cpp.
- CVE-2018-19872
* SECURITY UPDATE: QPluginLoader loads plugins from the CWD
- debian/patches/CVE-2020-0569.patch: do not load plugin from the $PWD
in src/corelib/plugin/qpluginloader.cpp.
- CVE-2020-0569
Date: 2020-02-09 18:47:15.279014+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
Signed-By: Ubuntu Archive Robot <cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk>
https://launchpad.net/ubuntu/+source/qtbase-opensource-src/5.5.1+dfsg-16ubuntu7.7
-------------- next part --------------
Sorry, changesfile not available.
More information about the Xenial-changes
mailing list