[Git][security-tracker-team/security-tracker][master] Update information on CVE-2020-24742

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6ad7ce75 by Salvatore Bonaccorso at 2021-08-17T18:28:11+02:00
Update information on CVE-2020-24742

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -65673,14 +65673,15 @@ CVE-2020-24744
 CVE-2020-24743
 	RESERVED
 CVE-2020-24742 (An issue has been fixed in Qt versions 5.14.0 where QPluginLoader atte ...)
-	- qtbase-opensource-src 5.14.2+dfsg-3
-	[buster] - qtbase-opensource-src <not-affected> (Vulnerable code introduced later)
-	[stretch] - qtbase-opensource-src <not-affected> (Vulnerable code introduced later)
+	- qtbase-opensource-src 5.12.5+dfsg-8
+	[stretch] - qtbase-opensource-src 5.7.1+dfsg-3+deb9u2
 	- qtbase-opensource-src-gles 5.14.2+dfsg-3
 	- qt4-x11 <removed>
-	[buster] - qt4-x11 <not-affected> (Vulnerable code introduced later)
 	[stretch] - qt4-x11 <not-affected> (Vulnerable code introduced later)
 	NOTE: https://codereview.qt-project.org/c/qt/qtbase/+/280730
+	NOTE: Introduced in https://codereview.qt-project.org/gitweb?p=qt/qtbase.git;a=commitdiff;h=3146dadb42cb36aff83a62e831b8b4f4dc1562a7
+	NOTE: Fixed by: https://codereview.qt-project.org/gitweb?p=qt/qtbase.git;a=commitdiff;h=bf131e8d2181b3404f5293546ed390999f760404
+	NOTE: Same fix as CVE-2020-0569
 CVE-2020-24741 (An issue has been fixed in Qt versions 5.14.1 and 5.12.7 where QLibrar ...)
 	- qtbase-opensource-src 5.14.2+dfsg-3
 	[buster] - qtbase-opensource-src <not-affected> (Vulnerable code introduced later)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6ad7ce75f5c3a1985bf41e8e6a27458d08128add

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6ad7ce75f5c3a1985bf41e8e6a27458d08128add
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210817/1884b07c/attachment.htm>