Univention Bugzilla – Bug 29134
qt4-x11: Multiple security issues (3.1)
Last modified: 2019-04-11 19:23:49 CEST
+++ This bug was initially created as a clone of Bug #25537 +++ \item Bufferoverflow in Harfbuzz-Extension (CVE-2011-3193) \item Bufferoverflow in der Verarbeitung von Graustufenbildern (CVE-2011-3194)
Access to shared memory segments was insufficiently restricted, allowing local users to manipulate memory (CVE-2013-0254)
Denial of service due to unlimited expansion of XML external attributes in the XML parser (CVE-2013-4549)
Denial of service in processing malformed GIF images (CVE-2014-0190)
The maintenance with bug and security fixes for UCS 3.1-x has ended on 31st of May 2014. The maintenance of the UCS 3.x major series is continued by UCS 3.2-x that is supplied with bug and security fixes. Customers still on UCS 3.1-x are encouraged to update to UCS 3.2. Please contact your partner or Univention for any questions.