[Git][security-tracker-team/security-tracker][master] some qt4 issues pending

[Moritz Muehlenhoff]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
59cee5b3 by Moritz Muehlenhoff at 2019-04-11T20:33:48Z
some qt4 issues pending

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -25365,7 +25365,6 @@ CVE-2018-19873 (An issue was discovered in Qt before 5.11.3. QBmpHandler has a b
 	[experimental] - qtbase-opensource-src 5.11.3+dfsg-1
 	- qtbase-opensource-src 5.11.3+dfsg-2 (low)
 	- qt4-x11 <unfixed> (low; bug #923003)
-	[buster] - qt4-x11 <no-dsa> (Minor issue)
 	[stretch] - qt4-x11 <no-dsa> (Minor issue)
 	[jessie] - qt4-x11 <ignored> (Minor issue)
 	NOTE: https://blog.qt.io/blog/2018/12/04/qt-5-11-3-released-important-security-updates/
@@ -25375,14 +25374,13 @@ CVE-2018-19872 (An issue was discovered in Qt 5.11. A malformed PPM image causes
 	- qtbase-opensource-src 5.11.2+dfsg-3 (low)
 	[stretch] - qtbase-opensource-src <no-dsa> (Minor issue)
 	[jessie] - qtbase-opensource-src <no-dsa> (Minor issue)
+	- qt4-x11 <unfixed>
 	NOTE: https://bugreports.qt.io/browse/QTBUG-69449
-	TODO: check if affects qt4-x11 as well
 CVE-2018-19871 (An issue was discovered in Qt before 5.11.3. There is QTgaFile Uncontr ...)
 	- qtimageformats-opensource-src 5.11.3-2 (low)
 	[stretch] - qtimageformats-opensource-src <no-dsa> (Minor issue)
 	[jessie] - qtimageformats-opensource-src <postponed> (Minor issue)
 	- qt4-x11 <unfixed> (low; bug #923003)
-	[buster] - qt4-x11 <no-dsa> (Minor issue)
 	[stretch] - qt4-x11 <no-dsa> (Minor issue)
 	[jessie] - qt4-x11 <postponed> (Minor issue)
 	NOTE: https://blog.qt.io/blog/2018/12/04/qt-5-11-3-released-important-security-updates/
@@ -25394,7 +25392,6 @@ CVE-2018-19870 (An issue was discovered in Qt before 5.11.3. A malformed GIF ima
 	[experimental] - qtbase-opensource-src 5.11.3+dfsg-1
 	- qtbase-opensource-src 5.11.3+dfsg-2 (low)
 	- qt4-x11 <unfixed> (low; bug #923003)
-	[buster] - qt4-x11 <no-dsa> (Minor issue)
 	[stretch] - qt4-x11 <no-dsa> (Minor issue)
 	[jessie] - qt4-x11 <ignored> (Minor issue)
 	NOTE: https://blog.qt.io/blog/2018/12/04/qt-5-11-3-released-important-security-updates/
@@ -25408,7 +25405,6 @@ CVE-2018-19869 (An issue was discovered in Qt before 5.11.3. A malformed SVG ima
 	[stretch] - qtsvg-opensource-src <no-dsa> (Minor issue)
 	[jessie] - qtsvg-opensource-src <no-dsa> (Minor issue)
 	- qt4-x11 <unfixed> (low)
-	[buster] - qt4-x11 <no-dsa> (Minor issue)
 	[stretch] - qt4-x11 <no-dsa> (Minor issue)
 	[jessie] - qt4-x11 <no-dsa> (Minor issue)
 	NOTE: https://blog.qt.io/blog/2018/12/04/qt-5-11-3-released-important-security-updates/
@@ -39903,6 +39899,7 @@ CVE-2018-15518 (QXmlStream in Qt 5.x before 5.11.3 has a double-free or corrupti
 	{DSA-4374-1 DLA-1627-1}
 	[experimental] - qtbase-opensource-src 5.11.3+dfsg-1
 	- qtbase-opensource-src 5.11.3+dfsg-2
+	- qt4-x11 <unfixed>
 	NOTE: https://blog.qt.io/blog/2018/12/04/qt-5-11-3-released-important-security-updates/
 	NOTE: https://codereview.qt-project.org/#/c/236691/
 CVE-2018-15517 (The MailConnect feature on D-Link Central WiFiManager CWM-100 1.03 r00 ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/59cee5b3a51dd08258503ea3214d09610c8ed5fb

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/59cee5b3a51dd08258503ea3214d09610c8ed5fb
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190411/d1e41609/attachment.html>