Astra Linux - уязвимость в qt4-x11, qtbase-opensource-src

A issue was discovered in Qt before version 5.15.15, in versions 6.x before 6.2.9, and in versions 6.3.x through 6.5.x before 6.5.2. Certificate validation for TLS does not always consider whether the root of the chain is a configured CA certificate...

SUSE CVE-2013-4422

SQL injection vulnerability in Quassel IRC before 0.9.1, when Qt 4.8.5 or later and PostgreSQL 8.2 or later are used, allows remote attackers to execute arbitrary SQL commands via a \ backslash in a message...

SUSE CVE-2016-10040

Stack-based buffer overflow in QXmlSimpleReader in Qt 4.8.5 allows remote attackers to cause a denial of service application crash via a xml file with multiple nested open tags...

SUSE CVE-2017-16667

backintime aka Back in Time before 1.1.24 did improper escaping/quoting of file paths used as arguments to the 'notify-send' command, leading to some parts of file paths being executed as shell commands within an os.system call in qt4/plugins/notifyplugin.py. This could allow an attacker to craft...

DEBIAN-CVE-2017-16667

backintime aka Back in Time before 1.1.24 did improper escaping/quoting of file paths used as arguments to the 'notify-send' command, leading to some parts of file paths being executed as shell commands within an os.system call in qt4/plugins/notifyplugin.py. This could allow an attacker to craft...

PT-2013-1885 · Openssl +2 · Openssl +2

Name of the Vulnerable Software and Affected Versions: Qt versions prior to 4.6.5 Qt versions 4.7.x prior to 4.7.6 Qt versions 4.8.x prior to 4.8.5 Description: The issue arises from the QSslSocket::sslErrors function, which, when used with certain versions of openSSL, may read memory from an...

Improper Input Validation

Overview Affected versions of this package are vulnerable to Improper Input Validation src/network/ssl/qsslcertificate.cpp in Nokia Trolltech Qt 4.x does not properly handle a '\0' character in a domain name in the Subject Alternative Name field of an X.509 certificate, which allows...

PT-2009-6696 · Qt +2 · Libqt4-Test +33

Name of the Vulnerable Software and Affected Versions: libqt4-sql-sqlite2 affected versions not specified libqt4-webkit affected versions not specified libqt4-designer affected versions not specified libqt4-opengl affected versions not specified libqt4-script affected versions not specified...