Synopsis:          Moderate: qt security update
Issue Date:        2013-03-21
CVE Numbers:       CVE-2013-0254
--

It was discovered that the QSharedMemory class implementation of the Qt
toolkit created shared memory segments with insecure permissions. A local
attacker could use this flaw to read or alter the contents of a particular
shared memory segment, possibly leading to their ability to obtain
sensitive information or influence the behavior of a process that is using
the shared memory segment. (CVE-2013-0254)

All running applications linked against Qt libraries must be restarted for
this update to take effect.
--

SL6
   x86_64
     phonon-backend-gstreamer-4.6.2-26.el6_4.i686.rpm
     phonon-backend-gstreamer-4.6.2-26.el6_4.x86_64.rpm
     qt-4.6.2-26.el6_4.i686.rpm
     qt-4.6.2-26.el6_4.x86_64.rpm
     qt-debuginfo-4.6.2-26.el6_4.i686.rpm
     qt-debuginfo-4.6.2-26.el6_4.x86_64.rpm
     qt-mysql-4.6.2-26.el6_4.i686.rpm
     qt-mysql-4.6.2-26.el6_4.x86_64.rpm
     qt-odbc-4.6.2-26.el6_4.i686.rpm
     qt-odbc-4.6.2-26.el6_4.x86_64.rpm
     qt-postgresql-4.6.2-26.el6_4.i686.rpm
     qt-postgresql-4.6.2-26.el6_4.x86_64.rpm
     qt-sqlite-4.6.2-26.el6_4.i686.rpm
     qt-sqlite-4.6.2-26.el6_4.x86_64.rpm
     qt-x11-4.6.2-26.el6_4.i686.rpm
     qt-x11-4.6.2-26.el6_4.x86_64.rpm
     qt-demos-4.6.2-26.el6_4.x86_64.rpm
     qt-devel-4.6.2-26.el6_4.i686.rpm
     qt-devel-4.6.2-26.el6_4.x86_64.rpm
     qt-examples-4.6.2-26.el6_4.x86_64.rpm
   i386
     phonon-backend-gstreamer-4.6.2-26.el6_4.i686.rpm
     qt-4.6.2-26.el6_4.i686.rpm
     qt-debuginfo-4.6.2-26.el6_4.i686.rpm
     qt-mysql-4.6.2-26.el6_4.i686.rpm
     qt-odbc-4.6.2-26.el6_4.i686.rpm
     qt-postgresql-4.6.2-26.el6_4.i686.rpm
     qt-sqlite-4.6.2-26.el6_4.i686.rpm
     qt-x11-4.6.2-26.el6_4.i686.rpm
     qt-demos-4.6.2-26.el6_4.i686.rpm
     qt-devel-4.6.2-26.el6_4.i686.rpm
     qt-examples-4.6.2-26.el6_4.i686.rpm
   noarch
     qt-doc-4.6.2-26.el6_4.noarch.rpm

- Scientific Linux Development Team