Описание
An issue was discovered in Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.2. Certificate validation for TLS does not always consider whether the root of a chain is a configured CA certificate.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 6 | qt | Out of support scope | ||
| Red Hat Enterprise Linux 6 | qt3 | Out of support scope | ||
| Red Hat Enterprise Linux 7 | qt | Out of support scope | ||
| Red Hat Enterprise Linux 7 | qt3 | Out of support scope | ||
| Red Hat Enterprise Linux 8 | qt5-qtbase | Fixed | RHSA-2023:6967 | 14.11.2023 |
| Red Hat Enterprise Linux 9 | qt5 | Fixed | RHSA-2023:6369 | 07.11.2023 |
Показывать по
Дополнительная информация
Статус:
EPSS
5.3 Medium
CVSS3
Связанные уязвимости
An issue was discovered in Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.2. Certificate validation for TLS does not always consider whether the root of a chain is a configured CA certificate.
An issue was discovered in Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.2. Certificate validation for TLS does not always consider whether the root of a chain is a configured CA certificate.
An issue was discovered in Qt before 5.15.15, 6.x before 6.2.9, and 6. ...
An issue was discovered in Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.2. Certificate validation for TLS does not always consider whether the root of a chain is a configured CA certificate.
EPSS
5.3 Medium
CVSS3