Lucene search
Gentoo FoundationMGASA-2019-0356HistoryDec 06, 2019 - 5:15 p.m.
Updated QT stack fix security vulnerability
2019-12-0617:15:42
Gentoo Foundation
advisories.mageia.org
8
0.008 Low
EPSS
Percentile
81.8%
This update provides the 5.12.6 QT stack maintenance release and fixes the following security issue: An out-of-bounds memory access in the generateDirectionalRuns() function in qtextengine.cpp in Qt qtbase 5.11.x and 5.12.x before 5.12.5 allows attackers to cause a denial of service by crashing an application via a text file containing many directional characters (CVE-2019-18281). kwin and skrooge has been rebuilt to pick up proper dependencies on the updated QT packages.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 7 | noarch | kwin | < 5.15.4-1.1 | kwin-5.15.4-1.1.mga7 |
| Mageia | 7 | noarch | pyside2 | < 5.12.6-1 | pyside2-5.12.6-1.mga7 |
| Mageia | 7 | noarch | pyside2-tools | < 5.12.6-1 | pyside2-tools-5.12.6-1.mga7 |
| Mageia | 7 | noarch | qt3d5 | < 5.12.6-1 | qt3d5-5.12.6-1.mga7 |
| Mageia | 7 | noarch | qtbase5 | < 5.12.6-1 | qtbase5-5.12.6-1.mga7 |
| Mageia | 7 | noarch | qtcharts5 | < 5.12.6-1 | qtcharts5-5.12.6-1.mga7 |
| Mageia | 7 | noarch | qtconnectivity5 | < 5.12.6-1 | qtconnectivity5-5.12.6-1.mga7 |
| Mageia | 7 | noarch | qtdatavis3d5 | < 5.12.6-1 | qtdatavis3d5-5.12.6-1.mga7 |
| Mageia | 7 | noarch | qtdeclarative5 | < 5.12.6-1 | qtdeclarative5-5.12.6-1.mga7 |
| Mageia | 7 | noarch | qtdoc5 | < 5.12.6-1 | qtdoc5-5.12.6-1.mga7 |
Related
nessus
nessus
EulerOS 2.0 SP8 : qt5-qtbase (EulerOS-SA-2022-1584)
2022-04-25 00:00:00
Debian DSA-4556-1 : qtbase-opensource-src - security update
2019-11-01 00:00:00
GLSA-202003-60 : QtCore: Multiple vulnerabilities
2020-03-27 00:00:00
symantec
symantec
Qt QtBase Module CVE-2019-18281 Denial of Service Vulnerability
2019-10-24 00:00:00
ubuntucve
ubuntucve
CVE-2019-18281
2019-10-23 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2019-0356)
2022-01-28 00:00:00
Huawei EulerOS: Security Advisory for qt5-qtbase (EulerOS-SA-2022-1584)
2022-04-25 00:00:00
Debian: Security Advisory (DSA-4556-1)
2019-11-02 00:00:00
osv
osv
CVE-2019-18281
2019-10-23 15:15:14
qtbase-opensource-src - security update
2019-10-31 00:00:00
Moderate: qt5 security, bug fix, and enhancement update
2020-04-28 09:02:52
veracode
veracode
Denial Of Service (DoS)
2021-12-15 00:00:53
debian
debian
[SECURITY] [DSA 4556-1] qtbase-opensource-src security update
2019-10-31 21:48:48
debiancve
debiancve
CVE-2019-18281
2019-10-23 15:15:00
redhatcve
redhatcve
CVE-2019-18281
2019-10-23 17:20:50
cvelist
cvelist
CVE-2019-18281
2019-10-23 14:03:53
prion
prion
Design/Logic Flaw
2019-10-23 15:15:00
cve
cve
CVE-2019-18281
2019-10-23 15:15:00
gentoo
gentoo
QtCore: Multiple vulnerabilities
2020-03-26 00:00:00
ubuntu
ubuntu
Qt vulnerabilities
2020-02-10 00:00:00
redhat
redhat
(RHSA-2020:1665) Moderate: qt5 security, bug fix, and enhancement update
2020-04-28 09:02:52
rocky
rocky
qt5 security, bug fix, and enhancement update
2020-04-28 09:02:52