32 matches found
EUVD-2020-6136
Malware in sbrugna...
EUVD-2007-5935
Malware in sbrugna...
EUVD-2010-5040
Malware in sbrugna...
SUSE CVE-2010-5076
QSslSocket in Qt before 4.7.0-rc1 recognizes a wildcard IP address in the subject's Common Name field of an X.509 certificate, which might allow man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority...
SUSE CVE-2020-13962
Qt 5.12.2 through 5.14.2, as used in unofficial builds of Mumble 1.3.0 and other products, mishandles OpenSSL's error queue, which can cause a denial of service to QSslSocket users. Because errors leak in unrelated TLS sessions, an unrelated session may be disconnected when any handshake fails...
openSUSE: Security Advisory for libqt5-qtbase (openSUSE-SU-2020:1319-1)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE Security Update : libqt5-qtbase (openSUSE-2020-1319)
This update for libqt5-qtbase fixes the following issues : - Fixed a possible crash in certificate parsing. - Fixed a DoS in QSslSocket bsc1172726, CVE-2020-13962. - Added support for PostgreSQL 12 bsc1173758. This update was imported from the SUSE:SLE-15-SP2:Update update project. C Tenable...
OPENSUSE-SU-2020:1319-1 Security update for libqt5-qtbase
This update for libqt5-qtbase fixes the following issues: - Fixed a possible crash in certificate parsing. - Fixed a DoS in QSslSocket bsc1172726, CVE-2020-13962. - Added support for PostgreSQL 12 bsc1173758. This update was imported from the SUSE:SLE-15-SP2:Update update project...
Security update for libqt5-qtbase (moderate)
openSUSE Security Update: Security update for libqt5-qtbase Announcement ID: openSUSE-SU-2020:1319-1 Rating: moderate References: 1172726 1173758 Cross-References: CVE-2020-13962 Affected Products: openSUSE Leap 15.2 An update that solves one vulnerability and has one errata is now available...
SUSE SLED15 / SLES15 Security Update : libqt5-qtbase (SUSE-SU-2020:2357-1)
This update for libqt5-qtbase fixes the following issues : Fixed a possible crash in certificate parsing. Fixed a DoS in QSslSocket bsc1172726, CVE-2020-13962. Added support for PostgreSQL 12 bsc1173758. Note that Tenable Network Security has extracted the preceding description block directly fro...
CVE-2020-13962
Qt 5.12.2 through 5.14.2, as used in unofficial builds of Mumble 1.3.0 and other products, mishandles OpenSSL's error queue, which can cause a denial of service to QSslSocket users. Because errors leak in unrelated TLS sessions, an unrelated session may be disconnected when any handshake fails...
CVE-2020-13962
Qt 5.12.2 through 5.14.2, as used in unofficial builds of Mumble 1.3.0 and other products, mishandles OpenSSL's error queue, which can cause a denial of service to QSslSocket users. Because errors leak in unrelated TLS sessions, an unrelated session may be disconnected when any handshake fails...
Code injection
Qt 5.12.2 through 5.14.2, as used in unofficial builds of Mumble 1.3.0 and other products, mishandles OpenSSL's error queue, which can cause a denial of service to QSslSocket users. Because errors leak in unrelated TLS sessions, an unrelated session may be disconnected when any handshake fails...
CVE-2020-13962
Qt 5.12.2 through 5.14.2, as used in unofficial builds of Mumble 1.3.0 and other products, mishandles OpenSSL's error queue, which can cause a denial of service to QSslSocket users. Because errors leak in unrelated TLS sessions, an unrelated session may be disconnected when any handshake fails...
CVE-2020-13962
Qt 5.12.2 through 5.14.2, as used in unofficial builds of Mumble 1.3.0 and other products, mishandles OpenSSL's error queue, which can cause a denial of service to QSslSocket users. Because errors leak in unrelated TLS sessions, an unrelated session may be disconnected when any handshake fails...
CVE-2020-13962
CVE-2020-13962 affects Qt 5.12.2–5.14.2 as used in unofficial builds of Mumble 1.3.0 and other products. The issue arises from mishandling OpenSSL’s error queue, causing a denial of service to QSslSocket users and, due to error leakage across sessions, potentially disconnecting another session wh...
Design/Logic Flaw
The QSslSocket::sslErrors function in Qt before 4.6.5, 4.7.x before 4.7.6, 4.8.x before 4.8.5, when using certain versions of openSSL, uses an "incompatible structure layout" that can read memory from the wrong location, which causes Qt to report an incorrect error when certificate validation fai...
CVE-2012-6093
The QSslSocket::sslErrors function in Qt before 4.6.5, 4.7.x before 4.7.6, 4.8.x before 4.8.5, when using certain versions of openSSL, uses an "incompatible structure layout" that can read memory from the wrong location, which causes Qt to report an incorrect error when certificate validation fai...
CVE-2012-6093
The CVE-2012-6093 issue affects Qt's QSslSocket::sslErrors across Qt versions (pre-4.6.5; pre-4.7.6 for 4.7.x; pre-4.8.5 for 4.8.x) when used with certain OpenSSL versions. It arises from an incompatible structure layout that can read memory from the wrong location, causing Qt to report an incorr...
CVE-2012-6093
The QSslSocket::sslErrors function in Qt before 4.6.5, 4.7.x before 4.7.6, 4.8.x before 4.8.5, when using certain versions of openSSL, uses an "incompatible structure layout" that can read memory from the wrong location, which causes Qt to report an incorrect error when certificate validation fai...