Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

Fedora 27 Critical Update: qt5-qtwebengine Security Fix for Chromium

fedora
Calendar Grey November 17, 2017
Dist Fedora Esm H88
The latest QtWebEngine update addresses vital security vulnerabilities sourced from Chromium, enhancing both system stability and operational efficiency.
An update of QtWebEngine to the security and bugfix release 5.9.2, including: Chromium Snapshot: * Security fixes from Chromium up to version 61.0.3163.79 Including: CVE-2017-5092...

Summary

Qt5 - QtWebEngine components.

An update of QtWebEngine to the security and bugfix release 5.9.2, including:

Chromium Snapshot: * Security fixes from Chromium up to version 61.0.3163.79

Including: CVE-2017-5092, CVE-2017-5093, CVE-2017-5095, CVE-2017-5097,

CVE-2017-5099, CVE-2017-5102, CVE-2017-5103, CVE-2017-5107,

CVE-2017-5112, CVE-2017-5114, CVE-2017-5117 and CVE-2017-5118 * Fixed Skia to

to render text correctly with FreeType 2.8.1 * [QTBUG-50389] Fixed assert on

some flash content QtWebEngine: * [QTBUG-57505] Handle --force-webrtc-ip-handling-policy on command-line * [QTBUG-58306] Fixed handling of menu key

* [QTBUG-60790] Fixed dragging images to desktop * [QTBUG-61354] Set referrer

on download requests * [QTBUG-61429] Fixed cancelling IME composition *

[QTBUG-61506] Stop searching when navigating away * [QTBUG-61910] Fixed an

issue where system proxy settings were not picked up correctly *

[QTBUG-62112] Fixed upside-down rendering in software rendering mode *

[QTBUG-62112] Fixed rendering of content with preserve-3d in CSS *

[QTBUG-62311] Fixed hang when exiting with open combobox * [QTBUG-62808]

Handle --explicitly-allowed-ports on command-line * [QTBUG-62898] Fixed

accessing webchannels from document-creation user-scripts after navigation.

* [QTBUG-62942] Fixed committing IME composition on touch events

QWebEngineView: * [QTBUG-61621] Fixed propagation of unhandled key press

events WebEngineView: * The callback version of printToPdf is now called

with a proper bytearray result instead of a PDF data in a javascript

string. Platform Specific Changes: * [QTBUG-61528, QTBUG-62673] Fixed

various multilib build configurations * [QTBUG-61846] Fixed host builds on

Arm and MIPS

su -c 'dnf upgrade qt5-qtwebengine' at the command line.

For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Topics%20covered

Topics Covered

security advisory security issue fedora critical bugfix qtwebengine

Change Log

References

Update Instructions

Severity
critical
Lowest
Low
Medium
High
Critical

Product: Fedora 27
Version: 5.9.2
Release: 2.fc27
URL: https://www.qt.io/
Summary: Qt5 - QtWebEngine components

Topics%20covered

Topics Covered

security advisory security issue fedora critical bugfix qtwebengine

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here