Synopsis:          Moderate: qt5-qtbase security update
Advisory ID:       SLSA-2020:4025-1
Issue Date:        2020-10-01
CVE Numbers:       CVE-2020-0570
                   CVE-2020-0569
--

Security Fix(es):

* qt: files placed by attacker can influence the working directory and lead
to malicious code execution (CVE-2020-0569)

* qt: files placed by attacker can influence the working directory and lead
to malicious code execution (CVE-2020-0570)
--

SL7
  x86_64
    qt5-qtbase-gui-5.9.7-4.el7.x86_64.rpm
    qt5-qtbase-devel-5.9.7-4.el7.x86_64.rpm
    qt5-qtbase-5.9.7-4.el7.x86_64.rpm
    qt5-qtbase-common-5.9.7-4.el7.noarch.rpm
    qt5-rpm-macros-5.9.7-4.el7.noarch.rpm
    qt5-qtbase-odbc-5.9.7-4.el7.i686.rpm
    qt5-qtbase-odbc-5.9.7-4.el7.x86_64.rpm
    qt5-qtbase-mysql-5.9.7-4.el7.x86_64.rpm
    qt5-qtbase-gui-5.9.7-4.el7.i686.rpm
    qt5-qtbase-mysql-5.9.7-4.el7.i686.rpm
    qt5-qtbase-5.9.7-4.el7.i686.rpm
    qt5-qtbase-devel-5.9.7-4.el7.i686.rpm
    qt5-qtbase-postgresql-5.9.7-4.el7.i686.rpm
    qt5-qtbase-postgresql-5.9.7-4.el7.x86_64.rpm
    qt5-qtbase-debuginfo-5.9.7-4.el7.i686.rpm
    qt5-qtbase-debuginfo-5.9.7-4.el7.x86_64.rpm
    qt5-qtbase-doc-5.9.7-4.el7.x86_64.rpm
    qt5-qtbase-examples-5.9.7-4.el7.x86_64.rpm
    qt5-qtbase-static-5.9.7-4.el7.i686.rpm
    qt5-qtbase-static-5.9.7-4.el7.x86_64.rpm
  noarch
    qt5-qtbase-common-5.9.7-4.el7.noarch.rpm
    qt5-rpm-macros-5.9.7-4.el7.noarch.rpm

- Scientific Linux Development Team