[Git][security-tracker-team/security-tracker][master] new qt issue
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Fri Mar 21 10:03:42 GMT 2025
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
db92a9e8 by Moritz Muehlenhoff at 2025-03-21T11:03:14+01:00
new qt issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,5 +1,11 @@
CVE-2025-30348 (encodeText in QDom in Qt before 6.8.0 has a complex algorithm involvin ...)
- TODO: check
+ - qt6-base 6.8.2+dfsg-5
+ - qtbase-opensource-src <not-affected> (Not needed in Qt5)
+ - qtbase-opensource-src-gles <not-affected> (Not needed in Qt5)
+ NOTE: https://github.com/qt/qtbase/commit/2ce08e3671b8d18b0284447e5908ce15e6e8f80f (v6.9.0-beta1)
+ NOTE: https://github.com/qt/qtbase/commit/225e235cf966a44af23dbe9aaaa2fd20ab6430ee (v6.8.0-rc1)
+ NOTE: https://codereview.qt-project.org/c/qt/qtbase/+/581442
+ NOTE: https://bugreports.qt.io/browse/QTBUG-127549
CVE-2025-30347 (Varnish Enterprise before 6.0.13r13 allows remote attackers to obtain ...)
NOT-FOR-US: Varnish Enterprise
CVE-2025-30346 (Varnish Cache before 7.6.2 and Varnish Enterprise before 6.0.13r10 all ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/db92a9e89128ec2c4788774a887eb36d9b8c8e8b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/db92a9e89128ec2c4788774a887eb36d9b8c8e8b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250321/25d76244/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list