8 matches found
CVE-2012-5624
The XMLHttpRequest object in Qt before 4.8.4 enables http redirection to the file scheme, which allows man-in-the-middle attackers to force the read of arbitrary local files and possibly obtain sensitive information via a file: URL to a QML application...
Fedora 16 : qt-4.8.4-6.fc16 (2013-0270)
This build fixes a security issues : - QSslSocket may report incorrect errors when certificate verification fails. For more information: http://lists.qt-project.org/pipermail/announce/2013-Janu ary/000020.html - blacklists unauthorized SSL certificates by Turktrust. For more information:...
Fedora 18 : qt-4.8.4-6.fc18 (2013-0199)
This build fixes a security issues : - QSslSocket may report incorrect errors when certificate verification fails. For more information: http://lists.qt-project.org/pipermail/announce/2013-Janu ary/000020.html - blacklists unauthorized SSL certificates by Turktrust. For more information:...
Fedora 17 : qt-4.8.4-6.fc17 (2013-0277)
This build fixes a security issues : - QSslSocket may report incorrect errors when certificate verification fails. For more information: http://lists.qt-project.org/pipermail/announce/2013-Janu ary/000020.html - blacklists unauthorized SSL certificates by Turktrust. For more information:...
Fedora 16 : qt-4.8.4-1.fc16 (2012-19715)
New bugfix release, see also: http://blog.qt.digia.com/blog/2012/11/29/qt-4-8-4-released/ This release also includes a security fix for: QML XmlHttpRequest Insecure Redirection http://lists.qt-project.org/pipermail/announce/2012-November/000014.ht ml Note that Tenable Network Security has extract...
[SECURITY] Fedora 17 Update: qt-4.8.4-1.fc17
Qt is a software toolkit for developing applications. This package contains base tools, like string, xml, and network handling...
Fedora 18 : qt-4.8.4-1.fc18 (2012-19673)
New bugfix release, see also: http://blog.qt.digia.com/blog/2012/11/29/qt-4-8-4-released/ This release also includes a security fix for: QML XmlHttpRequest Insecure Redirection http://lists.qt-project.org/pipermail/announce/2012-November/000014.ht ml Note that Tenable Network Security has extract...
CVE-2012-5624
The XMLHttpRequest object in Qt before 4.8.4 enables http redirection to the file scheme, which allows man-in-the-middle attackers to force the read of arbitrary local files and possibly obtain sensitive information via a file: URL to a QML application...