Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntuUbuntuUSN-1723-1
HistoryFeb 14, 2013 - 12:00 a.m.

Qt vulnerabilities

2013-02-1400:00:00
ubuntu.com
31

5.8 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

0.003 Low

EPSS

Percentile

70.6%

JSON

Releases

  • Ubuntu 12.10
  • Ubuntu 12.04
  • Ubuntu 11.10
  • Ubuntu 10.04

Packages

  • qt4-x11 - Qt 4 libraries

Details

Richard J. Moore and Peter Hartmann discovered that Qt allowed redirecting
requests from http to file schemes. If an attacker were able to perform a
machine-in-the-middle attack, this flaw could be exploited to view sensitive
information. This issue only affected Ubuntu 11.10, Ubuntu 12.04 LTS,
and Ubuntu 12.10. (CVE-2012-5624)

Stephen Cheng discovered that Qt may report incorrect errors when ssl
certificate verification fails. (CVE-2012-6093)

Tim Brown and Mark Lowe discovered that Qt incorrectly used weak
permissions on shared memory segments. A local attacker could use this
issue to view sensitive information, or modify program data belonging to
other users. (CVE-2013-0254)

OSVersionArchitecturePackageVersionFilename
Ubuntu12.10noarchlibqt4-core< 4:4.8.3+dfsg-0ubuntu3.1UNKNOWN
Ubuntu12.10noarchlibqt4-assistant< 4:4.8.3+dfsg-0ubuntu3.1UNKNOWN
Ubuntu12.10noarchlibqt4-dbg< 4:4.8.3+dfsg-0ubuntu3.1UNKNOWN
Ubuntu12.10noarchlibqt4-dbus< 4:4.8.3+dfsg-0ubuntu3.1UNKNOWN
Ubuntu12.10noarchlibqt4-declarative< 4:4.8.3+dfsg-0ubuntu3.1UNKNOWN
Ubuntu12.10noarchlibqt4-declarative-folderlistmodel< 4:4.8.3+dfsg-0ubuntu3.1UNKNOWN
Ubuntu12.10noarchlibqt4-declarative-gestures< 4:4.8.3+dfsg-0ubuntu3.1UNKNOWN
Ubuntu12.10noarchlibqt4-declarative-particles< 4:4.8.3+dfsg-0ubuntu3.1UNKNOWN
Ubuntu12.10noarchlibqt4-declarative-shaders< 4:4.8.3+dfsg-0ubuntu3.1UNKNOWN
Ubuntu12.10noarchlibqt4-designer< 4:4.8.3+dfsg-0ubuntu3.1UNKNOWN
Rows per page:
1-10 of 1871

Related

securityvulns 2
openvas 24
nessus 23
fedora 8
ubuntucve 3
cve 3
cvelist 3
debiancve 3
prion 3
nvd 3
veracode 1
oraclelinux 1
centos 1
redhat 1
gentoo 1
debian 1
osv 1
securityvulns
securityvulns
Qt multiple security vulnerabilities
2013-02-18 00:00:00
[USN-1723-1] Qt vulnerabilities
2013-02-18 00:00:00
openvas
openvas
Ubuntu Update for qt4-x11 USN-1723-1
2013-02-15 00:00:00
Ubuntu: Security Advisory (USN-1723-1)
2013-02-15 00:00:00
SUSE: Security Advisory (SUSE-SU-2013:0457-1)
2021-06-09 00:00:00
nessus
nessus
Ubuntu 10.04 LTS / 11.10 / 12.04 LTS / 12.10 : qt4-x11 vulnerabilities (USN-1723-1)
2013-02-15 00:00:00
SuSE 11.2 Security Update : libqt4 (SAT Patch Number 7441)
2013-03-15 00:00:00
SuSE 11.2 Security Update : libqt4 (SAT Patch Number 7441)
2013-03-15 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: qt-4.8.4-6.fc17
2013-01-12 15:08:52
[SECURITY] Fedora 18 Update: qt-4.8.4-6.fc18
2013-01-23 01:40:30
[SECURITY] Fedora 17 Update: qt-4.8.4-1.fc17
2012-12-13 06:01:36
ubuntucve
ubuntucve
CVE-2012-6093
2012-12-31 00:00:00
CVE-2012-5624
2012-12-05 00:00:00
CVE-2013-0254
2013-02-06 00:00:00
cve
cve
CVE-2012-6093
2013-02-24 19:55:00
CVE-2012-5624
2022-10-03 16:15:31
CVE-2013-0254
2013-02-06 12:05:43
cvelist
cvelist
CVE-2012-6093
2013-02-24 19:00:00
CVE-2012-5624
2022-10-03 16:15:31
CVE-2013-0254
2013-02-06 11:00:00
debiancve
debiancve
CVE-2012-6093
2013-02-24 19:55:00
CVE-2012-5624
2022-10-03 16:15:31
CVE-2013-0254
2013-02-06 12:05:43
prion
prion
Design/Logic Flaw
2013-02-24 19:55:00
Design/Logic Flaw
2013-02-24 19:55:00
Design/Logic Flaw
2013-02-06 12:05:00
nvd
nvd
CVE-2012-6093
2013-02-24 19:55:00
CVE-2012-5624
2013-02-24 19:55:00
CVE-2013-0254
2013-02-06 12:05:43
veracode
veracode
Information Disclosure
2019-01-15 09:01:02
oraclelinux
oraclelinux
qt security update
2013-03-21 00:00:00
centos
centos
phonon, qt security update
2013-03-21 22:39:15
redhat
redhat
(RHSA-2013:0669) Moderate: qt security update
2013-03-21 00:00:00
gentoo
gentoo
QtCore, QtGui: Multiple vulnerabilities
2013-11-22 00:00:00
debian
debian
[SECURITY] [DLA 210-1] qt4-x11 security update
2015-04-30 11:59:40
osv
osv
qt4-x11 - security update
2015-04-30 00:00:00

5.8 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

0.003 Low

EPSS

Percentile

70.6%

JSON
Related for USN-1723-1
securityvulns2openvas24nessus23fedora8ubuntucve3cve3cvelist3debiancve3prion3nvd3veracode1oraclelinux1centos1redhat1gentoo1debian1osv1