Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2022:1796

Опубликовано: 10 мая 2022
Источник: rocky
Оценка: Moderate

Описание

Moderate: qt5-qtbase security update

Qt is a software toolkit for developing applications. The qt5-base packages contain base tools for string, xml, and network handling in Qt.

Security Fix(es):

  • qt: out-of-bounds write in QOutlineMapper::convertPath called from QRasterPaintEngine::fill and QPaintEngineEx::stroke (CVE-2021-38593)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Rocky Linux 8.6 Release Notes linked from the References section.

Затронутые продукты

  • Rocky Linux 8

НаименованиеАрхитектураРелизRPM
qt5-qtbasei6864.el8qt5-qtbase-5.15.2-4.el8.i686.rpm
qt5-qtbasex86_644.el8qt5-qtbase-5.15.2-4.el8.x86_64.rpm
qt5-qtbase-commonnoarch4.el8qt5-qtbase-common-5.15.2-4.el8.noarch.rpm
qt5-qtbase-develi6864.el8qt5-qtbase-devel-5.15.2-4.el8.i686.rpm
qt5-qtbase-develx86_644.el8qt5-qtbase-devel-5.15.2-4.el8.x86_64.rpm
qt5-qtbase-examplesi6864.el8qt5-qtbase-examples-5.15.2-4.el8.i686.rpm
qt5-qtbase-examplesx86_644.el8qt5-qtbase-examples-5.15.2-4.el8.x86_64.rpm
qt5-qtbase-guii6864.el8qt5-qtbase-gui-5.15.2-4.el8.i686.rpm
qt5-qtbase-guix86_644.el8qt5-qtbase-gui-5.15.2-4.el8.x86_64.rpm
qt5-qtbase-mysqli6864.el8qt5-qtbase-mysql-5.15.2-4.el8.i686.rpm

Показывать по

Связанные CVE

CVE-2021-38593

Ссылки на источники

Исправления

Связанные уязвимости

ubuntu логотип

CVE-2021-38593

CVSS3: 7.5
ubuntu
больше 4 лет назад

Qt 5.x before 5.15.6 and 6.x through 6.1.2 has an out-of-bounds write in QOutlineMapper::convertPath (called from QRasterPaintEngine::fill and QPaintEngineEx::stroke).

redhat логотип

CVE-2021-38593

CVSS3: 7.5
redhat
больше 4 лет назад

Qt 5.x before 5.15.6 and 6.x through 6.1.2 has an out-of-bounds write in QOutlineMapper::convertPath (called from QRasterPaintEngine::fill and QPaintEngineEx::stroke).

nvd логотип

CVE-2021-38593

CVSS3: 7.5
nvd
больше 4 лет назад

Qt 5.x before 5.15.6 and 6.x through 6.1.2 has an out-of-bounds write in QOutlineMapper::convertPath (called from QRasterPaintEngine::fill and QPaintEngineEx::stroke).

msrc логотип

CVE-2021-38593

CVSS3: 7.5
msrc
больше 4 лет назад

Описание отсутствует

debian логотип

CVE-2021-38593

CVSS3: 7.5
debian
больше 4 лет назад

Qt 5.x before 5.15.6 and 6.x through 6.1.2 has an out-of-bounds write ...