Advisories » MGASA-2019-0025

Updated qtbase5 packages fix security vulnerabilities

Publication date: 08 Jan 2019
Modification date: 08 Jan 2019
Type: security
Affected Mageia releases : 6
CVE: CVE-2018-15518 , CVE-2018-19873

Description

Double free in QXmlStreamReader (CVE-2018-15518).

Denial of Service on malformed BMP file in QBmpHandler (CVE-2018-19873).
                

References

• https://bugs.mageia.org/show_bug.cgi?id=24081
• https://lists.opensuse.org/opensuse-updates/2018-12/msg00121.html
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15518
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19873

SRPMS

6/core

• qtbase5-5.9.4-1.2.mga6