Sender: |
|
Date: |
Thu, 13 Sep 2007 15:30:47 -0500 |
MIME-version: |
1.0 |
Reply-To: |
|
Content-type: |
text/plain; format=flowed; charset=ISO-8859-1 |
Subject: |
|
From: |
|
Content-transfer-encoding: |
7BIT |
Comments: |
|
Parts/Attachments: |
|
|
Synopsis: Important: qt security update
Issue date: 2007-09-13
CVE Names: CVE-2007-0242 CVE-2007-4137
A flaw was found in the way Qt expanded certain UTF8 characters. It was
possible to prevent a Qt-based application from properly sanitizing user
supplied input. This could, for example, result in a cross-site scripting
attack against the Konqueror web browser. (CVE-2007-0242)
A buffer overflow flaw was found in the way Qt expanded malformed Unicode
strings. If an application linked against Qt parsed a malicious Unicode
string, it could lead to a denial of service or possibly allow the
execution of arbitrary code. (CVE-2007-4137)
SL 3.0.x
SRPMS:
qt-3.1.2-17.RHEL3.src.rpm
i386:
qt-3.1.2-17.RHEL3.i386.rpm
qt-config-3.1.2-17.RHEL3.i386.rpm
qt-designer-3.1.2-17.RHEL3.i386.rpm
qt-devel-3.1.2-17.RHEL3.i386.rpm
qt-MySQL-3.1.2-17.RHEL3.i386.rpm
qt-ODBC-3.1.2-17.RHEL3.i386.rpm
qt-PostgreSQL-3.1.2-17.RHEL3.i386.rpm
x86_64:
qt-3.1.2-17.RHEL3.i386.rpm
qt-3.1.2-17.RHEL3.x86_64.rpm
qt-config-3.1.2-17.RHEL3.x86_64.rpm
qt-designer-3.1.2-17.RHEL3.x86_64.rpm
qt-devel-3.1.2-17.RHEL3.x86_64.rpm
qt-MySQL-3.1.2-17.RHEL3.x86_64.rpm
qt-ODBC-3.1.2-17.RHEL3.x86_64.rpm
qt-PostgreSQL-3.1.2-17.RHEL3.x86_64.rpm
SL 4.x
SRPMS:
qt-3.3.3-13.RHEL4.src.rpm
i386:
qt-3.3.3-13.RHEL4.i386.rpm
qt-config-3.3.3-13.RHEL4.i386.rpm
qt-designer-3.3.3-13.RHEL4.i386.rpm
qt-devel-3.3.3-13.RHEL4.i386.rpm
qt-MySQL-3.3.3-13.RHEL4.i386.rpm
qt-ODBC-3.3.3-13.RHEL4.i386.rpm
qt-PostgreSQL-3.3.3-13.RHEL4.i386.rpm
x86_64:
qt-3.3.3-13.RHEL4.i386.rpm
qt-3.3.3-13.RHEL4.x86_64.rpm
qt-config-3.3.3-13.RHEL4.x86_64.rpm
qt-designer-3.3.3-13.RHEL4.x86_64.rpm
qt-devel-3.3.3-13.RHEL4.x86_64.rpm
qt-MySQL-3.3.3-13.RHEL4.x86_64.rpm
qt-ODBC-3.3.3-13.RHEL4.x86_64.rpm
qt-PostgreSQL-3.3.3-13.RHEL4.x86_64.rpm
SL 5.x
SRPMS:
qt-3.3.6-23.el5.src.rpm
i386:
qt-3.3.6-23.el5.i386.rpm
qt-config-3.3.6-23.el5.i386.rpm
qt-designer-3.3.6-23.el5.i386.rpm
qt-devel-3.3.6-23.el5.i386.rpm
qt-devel-docs-3.3.6-23.el5.i386.rpm
qt-MySQL-3.3.6-23.el5.i386.rpm
qt-ODBC-3.3.6-23.el5.i386.rpm
qt-PostgreSQL-3.3.6-23.el5.i386.rpm
x86_64:
qt-3.3.6-23.el5.i386.rpm
qt-3.3.6-23.el5.x86_64.rpm
qt-config-3.3.6-23.el5.x86_64.rpm
qt-designer-3.3.6-23.el5.x86_64.rpm
qt-devel-3.3.6-23.el5.i386.rpm
qt-devel-3.3.6-23.el5.x86_64.rpm
qt-devel-docs-3.3.6-23.el5.x86_64.rpm
qt-MySQL-3.3.6-23.el5.x86_64.rpm
qt-ODBC-3.3.6-23.el5.x86_64.rpm
qt-PostgreSQL-3.3.6-23.el5.x86_64.rpm
-Connie Sieh
-Troy Dawson
|
|
|