Описание
Security update for libqt5-qtbase
This update for libqt5-qtbase fixes the following issues:
- CVE-2020-17507: Fixed a buffer overflow in XBM parser (bsc#1176315)
- Made handling of XDG_RUNTIME_DIR more secure (bsc#1172515)
Список пакетов
SUSE Linux Enterprise Server 12 SP2-BCL
libQt5Concurrent5-5.6.1-17.16.1
libQt5Core5-5.6.1-17.16.1
libQt5DBus5-5.6.1-17.16.1
libQt5Gui5-5.6.1-17.16.1
libQt5Network5-5.6.1-17.16.1
libQt5OpenGL5-5.6.1-17.16.1
libQt5PrintSupport5-5.6.1-17.16.1
libQt5Sql5-5.6.1-17.16.1
libQt5Sql5-mysql-5.6.1-17.16.1
libQt5Sql5-postgresql-5.6.1-17.16.1
libQt5Sql5-sqlite-5.6.1-17.16.1
libQt5Sql5-unixODBC-5.6.1-17.16.1
libQt5Test5-5.6.1-17.16.1
libQt5Widgets5-5.6.1-17.16.1
libQt5Xml5-5.6.1-17.16.1
SUSE Linux Enterprise Server 12 SP2-LTSS
libQt5Concurrent5-5.6.1-17.16.1
libQt5Core5-5.6.1-17.16.1
libQt5DBus5-5.6.1-17.16.1
libQt5Gui5-5.6.1-17.16.1
libQt5Network5-5.6.1-17.16.1
libQt5OpenGL5-5.6.1-17.16.1
libQt5PrintSupport5-5.6.1-17.16.1
libQt5Sql5-5.6.1-17.16.1
libQt5Sql5-mysql-5.6.1-17.16.1
libQt5Sql5-postgresql-5.6.1-17.16.1
libQt5Sql5-sqlite-5.6.1-17.16.1
libQt5Sql5-unixODBC-5.6.1-17.16.1
libQt5Test5-5.6.1-17.16.1
libQt5Widgets5-5.6.1-17.16.1
libQt5Xml5-5.6.1-17.16.1
SUSE Linux Enterprise Server for SAP Applications 12 SP2
libQt5Concurrent5-5.6.1-17.16.1
libQt5Core5-5.6.1-17.16.1
libQt5DBus5-5.6.1-17.16.1
libQt5Gui5-5.6.1-17.16.1
libQt5Network5-5.6.1-17.16.1
libQt5OpenGL5-5.6.1-17.16.1
libQt5PrintSupport5-5.6.1-17.16.1
libQt5Sql5-5.6.1-17.16.1
libQt5Sql5-mysql-5.6.1-17.16.1
libQt5Sql5-postgresql-5.6.1-17.16.1
libQt5Sql5-sqlite-5.6.1-17.16.1
libQt5Sql5-unixODBC-5.6.1-17.16.1
libQt5Test5-5.6.1-17.16.1
libQt5Widgets5-5.6.1-17.16.1
libQt5Xml5-5.6.1-17.16.1
SUSE OpenStack Cloud 7
libQt5Concurrent5-5.6.1-17.16.1
libQt5Core5-5.6.1-17.16.1
libQt5DBus5-5.6.1-17.16.1
libQt5Gui5-5.6.1-17.16.1
libQt5Network5-5.6.1-17.16.1
libQt5OpenGL5-5.6.1-17.16.1
libQt5PrintSupport5-5.6.1-17.16.1
libQt5Sql5-5.6.1-17.16.1
libQt5Sql5-mysql-5.6.1-17.16.1
libQt5Sql5-postgresql-5.6.1-17.16.1
libQt5Sql5-sqlite-5.6.1-17.16.1
libQt5Sql5-unixODBC-5.6.1-17.16.1
libQt5Test5-5.6.1-17.16.1
libQt5Widgets5-5.6.1-17.16.1
libQt5Xml5-5.6.1-17.16.1
Ссылки
- Link for SUSE-SU-2020:2760-1
- E-Mail link for SUSE-SU-2020:2760-1
- SUSE Security Ratings
- SUSE Bug 1172515
- SUSE Bug 1176315
- SUSE CVE CVE-2020-17507 page
Описание
An issue was discovered in Qt through 5.12.9, and 5.13.x through 5.15.x before 5.15.1. read_xbm_body in gui/image/qxbmhandler.cpp has a buffer over-read.
Затронутые продукты
SUSE Linux Enterprise Server 12 SP2-BCL:libQt5Concurrent5-5.6.1-17.16.1
SUSE Linux Enterprise Server 12 SP2-BCL:libQt5Core5-5.6.1-17.16.1
SUSE Linux Enterprise Server 12 SP2-BCL:libQt5DBus5-5.6.1-17.16.1
SUSE Linux Enterprise Server 12 SP2-BCL:libQt5Gui5-5.6.1-17.16.1
Ссылки
- CVE-2020-17507
- SUSE Bug 1176315