Описание
Security update for libqt5-qtsvg
This update for libqt5-qtsvg fixes the following issues:
Security issues fixed:
- CVE-2018-19869: Fixed Denial of Service when parsing malformed URL reference (bsc#1118599)
Список пакетов
SUSE Linux Enterprise Module for Basesystem 15
libQt5Svg5-5.9.4-3.3.19
libqt5-qtsvg-devel-5.9.4-3.3.19
SUSE Linux Enterprise Module for Desktop Applications 15
libqt5-qtsvg-private-headers-devel-5.9.4-3.3.19
Ссылки
- Link for SUSE-SU-2019:0706-1
- E-Mail link for SUSE-SU-2019:0706-1
- SUSE Security Ratings
- SUSE Bug 1118599
- SUSE CVE CVE-2018-19869 page
Описание
An issue was discovered in Qt before 5.11.3. A malformed SVG image causes a segmentation fault in qsvghandler.cpp.
Затронутые продукты
SUSE Linux Enterprise Module for Basesystem 15:libQt5Svg5-5.9.4-3.3.19
SUSE Linux Enterprise Module for Basesystem 15:libqt5-qtsvg-devel-5.9.4-3.3.19
SUSE Linux Enterprise Module for Desktop Applications 15:libqt5-qtsvg-private-headers-devel-5.9.4-3.3.19
Ссылки
- CVE-2018-19869
- SUSE Bug 1118599