Описание
An issue was discovered in Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.2. Certificate validation for TLS does not always consider whether the root of a chain is a configured CA certificate.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| qt6-base | fixed | 6.4.2+dfsg-11 | package | |
| qt6-base | no-dsa | bookworm | package | |
| qtbase-opensource-src | fixed | 5.15.8+dfsg-12 | package | |
| qtbase-opensource-src | fixed | 5.15.8+dfsg-11+deb12u1 | bookworm | package |
| qtbase-opensource-src | fixed | 5.15.2+dfsg-9+deb11u1 | bullseye | package |
| qtbase-opensource-src | no-dsa | buster | package | |
| qtbase-opensource-src-gles | fixed | 5.15.10+dfsg-2 | package | |
| qtbase-opensource-src-gles | no-dsa | bookworm | package | |
| qtbase-opensource-src-gles | no-dsa | bullseye | package | |
| qt4-x11 | removed | package |
Примечания
https://codereview.qt-project.org/c/qt/qtbase/+/477560
https://codereview.qt-project.org/c/qt/qtbase/+/480002
Связанные уязвимости
An issue was discovered in Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.2. Certificate validation for TLS does not always consider whether the root of a chain is a configured CA certificate.
An issue was discovered in Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.2. Certificate validation for TLS does not always consider whether the root of a chain is a configured CA certificate.
An issue was discovered in Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.2. Certificate validation for TLS does not always consider whether the root of a chain is a configured CA certificate.
An issue was discovered in Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.2. Certificate validation for TLS does not always consider whether the root of a chain is a configured CA certificate.
An issue was discovered in Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.2. Certificate validation for TLS does not always consider whether the root of a chain is a configured CA certificate.