Advisories ยป MGASA-2015-0198

Updated qt3 qt4 & qtbase5 packages fix security vulnerabilities

Publication date: 06 May 2015
Modification date: 06 May 2015
Type: security
Affected Mageia releases : 4
CVE: CVE-2015-1858 , CVE-2015-1859 , CVE-2015-1860

Description

Updated qt3, qt4, and qtbase5 packages fix security vulnerabilities:

It is possible to construct invalid BMP (CVE-2015-1858), ICO (CVE-2015-1859)
and GIF (CVE-2015-1860) images that lead to buffer overflows.

Qt3 is only vulnerable to the CVE-2015-1860 issue with GIF images.
                

References

SRPMS

4/core