Updated qt4 packages fix security vulnerability

🗓️ 12 May 2019 09:35:33Reported by Gentoo FoundationType

Updated qt4 packages fix security vulnerability due to malformed PPM image causing division by zero and crash in qppmhandler.cpp (CVE-2018-19872

Reporter	Title	Published	Views	Family All 92
Tenable Nessus	Amazon Linux 2 : qt (ALAS-2020-1458)	20 Jul 202000:00	–	nessus
Tenable Nessus	AlmaLinux 8 : qt5 (ALSA-2020:1665)	9 Feb 202200:00	–	nessus
Tenable Nessus	CentOS 8 : qt5 (CESA-2020:1665)	1 Feb 202100:00	–	nessus
Tenable Nessus	CentOS 7 : qt (RHSA-2020:1172)	10 Apr 202000:00	–	nessus
Tenable Nessus	Debian DLA-2376-1 : qtbase-opensource-src security update	29 Sep 202000:00	–	nessus
Tenable Nessus	Debian DLA-2377-1 : qt4-x11 security update	29 Sep 202000:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP8 : qt (EulerOS-SA-2019-1833)	27 Aug 201900:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP5 : qt (EulerOS-SA-2019-1904)	16 Sep 201900:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP2 : qt (EulerOS-SA-2019-2381)	10 Dec 201900:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP3 : qt (EulerOS-SA-2019-2656)	18 Dec 201900:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Mageia	6	any	qt4	4.8.7-15.1	qt4-4.8.7-15.1.noarch.rpm

Source	Link
bugs	www.bugs.mageia.org/show_bug.cgi
lists	www.lists.fedoraproject.org/archives/list/[email protected]/thread/XS6G3ZDFCHWFQD4CFXWFPHREOHBBDTD7/

12 May 2019 09:35Current

2.1Low risk

Vulners AI Score2.1

CVSS 24.3

CVSS 35.5

EPSS0.01384