Univention Bugzilla – Bug 52139
qt4-x11: Multiple issues (4.4)
Last modified: 2020-09-30 15:37:47 CEST
New Debian qt4-x11 4:4.8.7+dfsg-11+deb9u1 fixes: This update addresses the following issues: * Double free in QXmlStreamReader (CVE-2018-15518) * Invalid parsing of malformed url reference resulting in a denial of service (CVE-2018-19869) * QImage allocation failure in qgifhandler (CVE-2018-19870) * QTgaFile CPU exhaustion (CVE-2018-19871) * Malformed PPM image causing division by zero and crash in qppmhandler.cpp (CVE-2018-19872) * QBmpHandler segmentation fault on malformed BMP file (CVE-2018-19873) * buffer over-read in read_xbm_body in gui/image/qxbmhandler.cpp (CVE-2020-17507)
--- mirror/ftp/4.3/unmaintained/4.3-0/source/qt4-x11_4.8.7+dfsg-11.dsc +++ apt/ucs_4.4-0-errata4.4-6/source/qt4-x11_4.8.7+dfsg-11+deb9u1.dsc @@ -1,3 +1,16 @@ +4:4.8.7+dfsg-11+deb9u1 [Sun, 20 Sep 2020 22:01:50 +0300] Adrian Bunk <bunk@debian.org>: + + * Non-maintainer upload by the LTS team. + * CVE-2018-15518: Double-free or corruption in QXmlStreamReader + during parsing of a specially crafted illegal XML document. + * CVE-2018-19869: A malformed SVG image causes a segmentation fault. + * CVE-2018-19870: A malformed GIF image causes a NULL pointer + dereference in QGifHandler resulting in a segmentation fault. + * CVE-2018-19871: Uncontrolled Resource Consumption in QTgaFile. + * CVE-2018-19872: A malformed PPM image causes a crash. + * CVE-2018-19873: QBmpHandler segfault on malformed BMP file. + * CVE-2020-17507: Buffer over-read in the XBM parser. + 4:4.8.7+dfsg-11 [Wed, 09 Nov 2016 13:50:49 -0300] Lisandro Damián Nicanor Pérez Meyer <lisandro@debian.org>: * Switch libmysqlclient-dev to default-libmysqlclient-dev. <http://10.200.17.11/4.4-6/#3446211225073820088>
OK: yaml OK: announce_errata OK: patch ~OK: piuparts dbysym [4.4-6] 70504ad65a Bug #52139: qt4-x11 4:4.8.7+dfsg-11+deb9u1 doc/errata/staging/qt4-x11.yaml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) [4.4-6] e13c2ce2aa Bug #52139: qt4-x11 4:4.8.7+dfsg-11+deb9u1 doc/errata/staging/qt4-x11.yaml | 27 +++++++++++++++++++++++++++ 1 file changed, 27 insertions(+)
<https://errata.software-univention.de/#/?erratum=4.4x755>