Two CVEs in qtbase-opensource-src
Salvatore Bonaccorso
carnil at debian.org
Thu Jan 30 19:56:56 GMT 2020
Hi Lisandro,
On Thu, Jan 30, 2020 at 02:24:49PM -0300, Lisandro Damián Nicanor Pérez Meyer wrote:
> I have just did:
>
> <https://lists.qt-project.org/pipermail/development/2020-January/038534.html>
>
> The patch just make sure that we don't do wrong call when the search prefixes
> contains '/'
> But before 5.12 (commit 5219c37f7c98f37f078fee00fe8ca35d83ff4f5d), there were
> no search prefixes with '/' in them.
> So no need to apply the patch in earlier versions.
>
> So:
>
> - None of the above CVEs affect qt4-x11
> - stretch and buster already have the fixes in the security repo.
Thanks, updated the tracker!
Regards,
Salvatore
More information about the pkg-kde-talk
mailing list