[Git][security-tracker-team/security-tracker][master] Updat information for CVE-2020-24742 specifically for qt4-x11
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Aug 17 21:04:34 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d8f84ab9 by Salvatore Bonaccorso at 2021-08-17T22:03:00+02:00
Updat information for CVE-2020-24742 specifically for qt4-x11
The issue was introduced in any later version ever present for qt4-x11
in unstable. The latest in unstable was 4:4.8.7+dfsg-20, which did not
contain the vulnerability so it's safe to switch to <not-affected> here
in this case.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -65682,8 +65682,7 @@ CVE-2020-24742 (An issue has been fixed in Qt versions 5.14.0 where QPluginLoade
- qtbase-opensource-src 5.12.5+dfsg-8
[stretch] - qtbase-opensource-src 5.7.1+dfsg-3+deb9u2
- qtbase-opensource-src-gles 5.14.2+dfsg-3
- - qt4-x11 <removed>
- [stretch] - qt4-x11 <not-affected> (Vulnerable code introduced later)
+ - qt4-x11 <not-affected> (Vulnerable code introduced later)
NOTE: https://codereview.qt-project.org/c/qt/qtbase/+/280730
NOTE: Introduced in https://codereview.qt-project.org/gitweb?p=qt/qtbase.git;a=commitdiff;h=3146dadb42cb36aff83a62e831b8b4f4dc1562a7 (v5.6.0-alpha1)
NOTE: Fixed by: https://codereview.qt-project.org/gitweb?p=qt/qtbase.git;a=commitdiff;h=bf131e8d2181b3404f5293546ed390999f760404 (v5.14.0-rc1)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d8f84ab9c476aca6e50706f3fea23c4f8265a029
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d8f84ab9c476aca6e50706f3fea23c4f8265a029
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210817/164bdacb/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list