CentOS ProjectCESA-2006:0725qt security update
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
EPSS
Percentile
95.3%
CentOS Errata and Security Advisory CESA-2006:0725
Qt is a software toolkit that simplifies the task of writing and
maintaining GUI (Graphical User Interface) applications for the X Window
System.
An integer overflow flaw was found in the way Qt handled certain pixmap
images. If an application linked against Qt created a pixmap image in a
certain way, it could lead to a denial of service or possibly allow the
execution of arbitrary code. (CVE-2006-4811)
Users of Qt should upgrade to these updated packages, which contain a
backported patch to correct this issue.
Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2006-November/075501.html
https://lists.centos.org/pipermail/centos-announce/2006-November/075502.html
https://lists.centos.org/pipermail/centos-announce/2006-November/075503.html
https://lists.centos.org/pipermail/centos-announce/2006-November/075504.html
https://lists.centos.org/pipermail/centos-announce/2006-November/075505.html
https://lists.centos.org/pipermail/centos-announce/2006-November/075506.html
https://lists.centos.org/pipermail/centos-announce/2006-November/075508.html
https://lists.centos.org/pipermail/centos-announce/2006-November/075509.html
https://lists.centos.org/pipermail/centos-announce/2006-November/088263.html
Affected packages:
qt
qt-MySQL
qt-ODBC
qt-PostgreSQL
qt-config
qt-designer
qt-devel
Upstream details at:
https://access.redhat.com/errata/RHSA-2006:0725
https://access.redhat.com/errata/RHSA-2006:0726
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| CentOS | 4 | ia64 | qt | < 3.3.3-10.RHEL4 | qt-3.3.3-10.RHEL4.ia64.rpm |
| CentOS | 4 | ia64 | qt-mysql | < 3.3.3-10.RHEL4 | qt-MySQL-3.3.3-10.RHEL4.ia64.rpm |
| CentOS | 4 | ia64 | qt-odbc | < 3.3.3-10.RHEL4 | qt-ODBC-3.3.3-10.RHEL4.ia64.rpm |
| CentOS | 4 | ia64 | qt-postgresql | < 3.3.3-10.RHEL4 | qt-PostgreSQL-3.3.3-10.RHEL4.ia64.rpm |
| CentOS | 4 | ia64 | qt-config | < 3.3.3-10.RHEL4 | qt-config-3.3.3-10.RHEL4.ia64.rpm |
| CentOS | 4 | ia64 | qt-designer | < 3.3.3-10.RHEL4 | qt-designer-3.3.3-10.RHEL4.ia64.rpm |
| CentOS | 4 | ia64 | qt-devel | < 3.3.3-10.RHEL4 | qt-devel-3.3.3-10.RHEL4.ia64.rpm |
| CentOS | 3 | ia64 | qt | < 3.1.2-14.RHEL3 | qt-3.1.2-14.RHEL3.ia64.rpm |
| CentOS | 3 | ia64 | qt-mysql | < 3.1.2-14.RHEL3 | qt-MySQL-3.1.2-14.RHEL3.ia64.rpm |
| CentOS | 3 | ia64 | qt-odbc | < 3.1.2-14.RHEL3 | qt-ODBC-3.1.2-14.RHEL3.ia64.rpm |
References
pasi.pirhonen.eu/
pgp.mit.edu:11371/pks/lookup?op=get&search=0xBEFA581B
steadfast.net/
rhn.redhat.com/errata/RHSA-2006-0725.html
rhn.redhat.com/errata/RHSA-2006-0726.html
twitter.com/centos
www.facebook.com/groups/centosproject/
www.linkedin.com/groups/22405
www.reddit.com/r/CentOS/
youtube.com/TheCentOSProject
Related
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
EPSS
Percentile
95.3%