UbuntuUSN-829-1Qt vulnerability
7.4 High
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
54.7%
Releases
- Ubuntu 9.04
- Ubuntu 8.10
- Ubuntu 8.04
Packages
- qt4-x11 -
Details
It was discovered that Qt did not properly handle certificates with NULL
characters in the Subject Alternative Name field of X.509 certificates. An
attacker could exploit this to perform a machine-in-the-middle attack to view
sensitive information or alter encrypted communications. (CVE-2009-2700)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 9.04 | noarch | libqt4-network | < 4.5.0-0ubuntu4.2 | UNKNOWN |
| Ubuntu | 9.04 | noarch | libqt4-assistant | < 4.5.0-0ubuntu4.2 | UNKNOWN |
| Ubuntu | 9.04 | noarch | libqt4-core | < 4.5.0-0ubuntu4.2 | UNKNOWN |
| Ubuntu | 9.04 | noarch | libqt4-dbg | < 4.5.0-0ubuntu4.2 | UNKNOWN |
| Ubuntu | 9.04 | noarch | libqt4-dbus | < 4.5.0-0ubuntu4.2 | UNKNOWN |
| Ubuntu | 9.04 | noarch | libqt4-designer | < 4.5.0-0ubuntu4.2 | UNKNOWN |
| Ubuntu | 9.04 | noarch | libqt4-dev | < 4.5.0-0ubuntu4.2 | UNKNOWN |
| Ubuntu | 9.04 | noarch | libqt4-dev | < dbg-4.5.0-0ubuntu4.2 | UNKNOWN |
| Ubuntu | 9.04 | noarch | libqt4-gui | < 4.5.0-0ubuntu4.2 | UNKNOWN |
| Ubuntu | 9.04 | noarch | libqt4-help | < 4.5.0-0ubuntu4.2 | UNKNOWN |
References
Related
7.4 High
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
54.7%