Описание
Security update for libqt5-qtbase
This update for libqt5-qtbase fixes the following issues:
Security issues fixed:
- CVE-2018-15518: Fixed double free in QXmlStreamReader (bsc#1118595)
- CVE-2018-19873: Fixed Denial of Service on malformed BMP file in QBmpHandler (bsc#1118596)
Список пакетов
SUSE Enterprise Storage 4
libQt5Concurrent5-5.6.1-17.6.2
libQt5Core5-5.6.1-17.6.2
libQt5DBus5-5.6.1-17.6.2
libQt5Gui5-5.6.1-17.6.2
libQt5Network5-5.6.1-17.6.2
libQt5OpenGL5-5.6.1-17.6.2
libQt5PrintSupport5-5.6.1-17.6.2
libQt5Sql5-5.6.1-17.6.2
libQt5Sql5-mysql-5.6.1-17.6.2
libQt5Sql5-postgresql-5.6.1-17.6.2
libQt5Sql5-sqlite-5.6.1-17.6.2
libQt5Sql5-unixODBC-5.6.1-17.6.2
libQt5Test5-5.6.1-17.6.2
libQt5Widgets5-5.6.1-17.6.2
libQt5Xml5-5.6.1-17.6.2
SUSE Linux Enterprise Server 12 SP2-BCL
libQt5Concurrent5-5.6.1-17.6.2
libQt5Core5-5.6.1-17.6.2
libQt5DBus5-5.6.1-17.6.2
libQt5Gui5-5.6.1-17.6.2
libQt5Network5-5.6.1-17.6.2
libQt5OpenGL5-5.6.1-17.6.2
libQt5PrintSupport5-5.6.1-17.6.2
libQt5Sql5-5.6.1-17.6.2
libQt5Sql5-mysql-5.6.1-17.6.2
libQt5Sql5-postgresql-5.6.1-17.6.2
libQt5Sql5-sqlite-5.6.1-17.6.2
libQt5Sql5-unixODBC-5.6.1-17.6.2
libQt5Test5-5.6.1-17.6.2
libQt5Widgets5-5.6.1-17.6.2
libQt5Xml5-5.6.1-17.6.2
SUSE Linux Enterprise Server 12 SP2-LTSS
libQt5Concurrent5-5.6.1-17.6.2
libQt5Core5-5.6.1-17.6.2
libQt5DBus5-5.6.1-17.6.2
libQt5Gui5-5.6.1-17.6.2
libQt5Network5-5.6.1-17.6.2
libQt5OpenGL5-5.6.1-17.6.2
libQt5PrintSupport5-5.6.1-17.6.2
libQt5Sql5-5.6.1-17.6.2
libQt5Sql5-mysql-5.6.1-17.6.2
libQt5Sql5-postgresql-5.6.1-17.6.2
libQt5Sql5-sqlite-5.6.1-17.6.2
libQt5Sql5-unixODBC-5.6.1-17.6.2
libQt5Test5-5.6.1-17.6.2
libQt5Widgets5-5.6.1-17.6.2
libQt5Xml5-5.6.1-17.6.2
SUSE Linux Enterprise Server for SAP Applications 12 SP2
libQt5Concurrent5-5.6.1-17.6.2
libQt5Core5-5.6.1-17.6.2
libQt5DBus5-5.6.1-17.6.2
libQt5Gui5-5.6.1-17.6.2
libQt5Network5-5.6.1-17.6.2
libQt5OpenGL5-5.6.1-17.6.2
libQt5PrintSupport5-5.6.1-17.6.2
libQt5Sql5-5.6.1-17.6.2
libQt5Sql5-mysql-5.6.1-17.6.2
libQt5Sql5-postgresql-5.6.1-17.6.2
libQt5Sql5-sqlite-5.6.1-17.6.2
libQt5Sql5-unixODBC-5.6.1-17.6.2
libQt5Test5-5.6.1-17.6.2
libQt5Widgets5-5.6.1-17.6.2
libQt5Xml5-5.6.1-17.6.2
SUSE OpenStack Cloud 7
libQt5Concurrent5-5.6.1-17.6.2
libQt5Core5-5.6.1-17.6.2
libQt5DBus5-5.6.1-17.6.2
libQt5Gui5-5.6.1-17.6.2
libQt5Network5-5.6.1-17.6.2
libQt5OpenGL5-5.6.1-17.6.2
libQt5PrintSupport5-5.6.1-17.6.2
libQt5Sql5-5.6.1-17.6.2
libQt5Sql5-mysql-5.6.1-17.6.2
libQt5Sql5-postgresql-5.6.1-17.6.2
libQt5Sql5-sqlite-5.6.1-17.6.2
libQt5Sql5-unixODBC-5.6.1-17.6.2
libQt5Test5-5.6.1-17.6.2
libQt5Widgets5-5.6.1-17.6.2
libQt5Xml5-5.6.1-17.6.2
Ссылки
- Link for SUSE-SU-2018:4183-1
- E-Mail link for SUSE-SU-2018:4183-1
- SUSE Security Ratings
- SUSE Bug 1118595
- SUSE Bug 1118596
- SUSE CVE CVE-2018-15518 page
- SUSE CVE CVE-2018-19873 page
Описание
QXmlStream in Qt 5.x before 5.11.3 has a double-free or corruption during parsing of a specially crafted illegal XML document.
Затронутые продукты
SUSE Enterprise Storage 4:libQt5Concurrent5-5.6.1-17.6.2
SUSE Enterprise Storage 4:libQt5Core5-5.6.1-17.6.2
SUSE Enterprise Storage 4:libQt5DBus5-5.6.1-17.6.2
SUSE Enterprise Storage 4:libQt5Gui5-5.6.1-17.6.2
Ссылки
- CVE-2018-15518
- SUSE Bug 1118595
- SUSE Bug 1126909
Описание
An issue was discovered in Qt before 5.11.3. QBmpHandler has a buffer overflow via BMP data.
Затронутые продукты
SUSE Enterprise Storage 4:libQt5Concurrent5-5.6.1-17.6.2
SUSE Enterprise Storage 4:libQt5Core5-5.6.1-17.6.2
SUSE Enterprise Storage 4:libQt5DBus5-5.6.1-17.6.2
SUSE Enterprise Storage 4:libQt5Gui5-5.6.1-17.6.2
Ссылки
- CVE-2018-19873
- SUSE Bug 1118596
- SUSE Bug 1126909