28 matches found
RHEL 6 : qt (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - qt: QPluginLoader loads plugins relative to CWD which could result in arbitrary code execution...
Oracle Linux 7 : qt5-qtbase (ELSA-2020-4025)
The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-4025 advisory. 5.9.7-4 - Fix: Files placed by attacker can influence the working directory and lead to malicious code execution Resolves: bz1814740 Resolves: bz181468...
CVE-2020-0570 affecting package qt5-qtsvg for versions less than 5.12.11-3
CVE-2020-0570 affecting package qt5-qtsvg for versions less than 5.12.11-3. An upgraded version of the package is available that resolves this issue...
EulerOS 2.0 SP3 : qt (EulerOS-SA-2022-1186)
According to the versions of the qt packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2020-0570. Reason: This candidate is a duplicate of CVE-2020-0570. A typo caused the wrong ...
AlmaLinux 8 : qt5-qtbase and qt5-qtwebsockets (ALSA-2020:4690)
The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2020:4690 advisory. - Qt through 5.14 allows an exponential XML entity expansion attack via a crafted SVG document that is mishandled in QXmlStreamReader, a related issue to...
Mageia: Security Advisory (MGASA-2020-0080)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP8 : qt5-qtbase (EulerOS-SA-2021-2642)
According to the versions of the qt5-qtbase packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : An issue has been fixed in Qt versions 5.14.0 where QPluginLoader attempts to load plugins relative to the working directory, allowing attacke...
NewStart CGSL CORE 5.05 / MAIN 5.05 : qt5-qtbase Multiple Vulnerabilities (NS-SA-2021-0156)
The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has qt5-qtbase packages installed that are affected by multiple vulnerabilities: - Out of bounds write in IntelR PROSet/Wireless WiFi products on Windows 10 may allow an authenticated user to potentially enable denial of servic...
CVE-2020-0570 affecting package qt5-qtbase 5.12.5-5
CVE-2020-0570 affecting package qt5-qtbase 5.12.5-5. An upgraded version of the package is available that resolves this issue...
Advisory ROSA-SA-2021-1959
Software: qt 4.8.7 OS: Cobalt 7.9 CVE-ID: CVE-2014-0190 CVE-Crit: HIGH CVE-DESC: The GIF decoder in QtGui in Qt before version 5.3 allows remote attackers to cause a denial of service dereferencing a NULL pointer via invalid width and height values in a GIF image. CVE-STATUS: default CVE-REV:...
CentOS 7 : qt5-qtbase (RHSA-2020:4025)
The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4025 advisory. - Out of bounds write in IntelR PROSet/Wireless WiFi products on Windows 10 may allow an authenticated user to potentially enable denial of service via...
RHEL 7 : qt5-qtbase (RHSA-2020:4025)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4025 advisory. Qt is a software toolkit for developing applications. The qt5-base packages contain base tools for string, xml, and network handling in Qt...
RHEL 8 : qt5-qtbase and qt5-qtwebsockets (RHSA-2020:4690)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4690 advisory. Qt is a software toolkit for developing applications. The qt5-base packages contain base tools for string, xml, and network handling in Qt...
Moderate: qt5-qtbase and qt5-qtwebsockets security and bug fix update
Qt is a software toolkit for developing applications. The qt5-base packages contain base tools for string, xml, and network handling in Qt. Security Fixes: qt: XML entity expansion vulnerability CVE-2015-9541 qt5-qtwebsockets: websocket implementation allows only limited size for frames and...
qt5-qtbase and qt5-qtwebsockets security and bug fix update
An update is available for qt5-qtwebsockets. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Qt is a software toolkit for developing applications. The qt5-base...
Huawei EulerOS: Security Advisory for qt (EulerOS-SA-2020-2321)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Medium: qt5-qtbase
Issue Overview: 2023-08-03: CVE-2020-24742 was added to this advisory. Files placed by attacker can influence the working directory and lead to malicious code execution CVE-2020-0569 Uncontrolled search path in the QT Library before 5.14.0, 5.12.7 and 5.9.10 may allow an authenticated user to...
Scientific Linux Security Update : qt5-qtbase on SL7.x x86_64 (20201001)
Security Fixes : - qt: files placed by attacker can influence the working directory and lead to malicious code execution CVE-2020-0569 - qt: files placed by attacker can influence the working directory and lead to malicious code execution CVE-2020-0570 C Tenable Network Security, Inc. The...
qt5 security update
CentOS Errata and Security Advisory CESA-2020:4025 An update for qt5-qtbase is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severi...
CVE-2020-0570
Uncontrolled search path in the QT Library before 5.14.0, 5.12.7 and 5.9.10 may allow an authenticated user to potentially enable elevation of privilege via local access...