[Git][security-tracker-team/security-tracker][master] various Qt fixes in sid

Moritz Muehlenhoff (@jmm) jmm at debian.org
Mon May 22 16:51:32 BST 2023 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
21f71967 by Moritz Muehlenhoff at 2023-05-22T17:51:00+02:00
various Qt fixes in sid

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -156,8 +156,8 @@ CVE-2023-2757 (The Waiting: One-click countdowns plugin for WordPress is vulnera
 CVE-2019-25137 (Umbraco CMS 4.11.8 through 7.15.10, and 7.12.4, allows Remote Code Exe ...)
 	NOT-FOR-US: Umbraco CMS
 CVE-2023-32763
-	- qt6-base <unfixed>
-	- qtbase-opensource-src <unfixed>
+	- qt6-base 6.4.2+dfsg-8
+	- qtbase-opensource-src 5.15.8+dfsg-10
 	- qtbase-opensource-src-gles <unfixed>
 	NOTE: https://lists.qt-project.org/pipermail/announce/2023-May/000413.html
 	NOTE: https://download.qt.io/official_releases/qt/5.15/CVE-2023-32763-qtbase-5.15.diff
@@ -165,8 +165,8 @@ CVE-2023-32763
 	NOTE: https://codereview.qt-project.org/c/qt/qtbase/+/476490
 	NOTE: https://bugreports.qt.io/browse/QTBUG-113337
 CVE-2023-32762
-	- qt6-base <unfixed>
-	- qtbase-opensource-src <unfixed>
+	- qt6-base 6.4.2+dfsg-9
+	- qtbase-opensource-src 5.15.8+dfsg-10
 	- qtbase-opensource-src-gles <unfixed>
 	NOTE: https://github.com/qt/qtbase/commit/1b736a815be0222f4b24289cf17575fc15707305
 CVE-2023-XXXX [XSS in RSS syntax]
@@ -869,7 +869,7 @@ CVE-2023-XXXX [several critical memory corruption vulnerabilities]
 	- osslsigncode 2.3.0-1 (bug #1035875)
 	NOTE: https://github.com/mtrojnar/osslsigncode/releases/tag/2.3
 CVE-2023-32573 (In Qt before 5.15.14, 6.0.x through 6.2.x before 6.2.9, and 6.3.x thro ...)
-	- qt6-svg <unfixed>
+	- qt6-svg 6.4.2-2
 	- qtsvg-opensource-src <unfixed>
 	- qt4-x11 <removed>
 	NOTE: https://codereview.qt-project.org/c/qt/qtsvg/+/474093



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/21f719678fecb51bc9d86e47ab18cc668d8c1ae6

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/21f719678fecb51bc9d86e47ab18cc668d8c1ae6
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230522/9b9edb0e/attachment.htm>

More information about the debian-security-tracker-commits mailing list