Mageia 7 & 8: 2021-0262 Moderate: Qt4 and Qtsvg5 Info Disclosure
mageia
June 16, 2021
An out of bounds read in function QRadialFetchSimd from crafted svg file may lead to information disclosure or other potential consequences
Summary
An out of bounds read in function QRadialFetchSimd from crafted svg file may
lead to information disclosure or other potential consequences. This update
includes the backported upstream fix and should resolve the security issue
(CVE-2021-3481).
References
- https://bugs.mageia.org/show_bug.cgi?id=29014
- https://qt-project.atlassian.net//browse/QTBUG-91507
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/O57HZYEVZNCW5L74PDD7K44E7XZEBXRK/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/GOBQ75US43TETW2OID6APHQRENDFK4BO/
- https://www.cve.org/CVERecord?id=CVE-2021-3481
Topics Covered
Resolution
SRPMS
- 8/core/qt4-4.8.7-35.1.mga8
- 8/core/qtsvg5-5.15.2-1.1.mga8
- 7/core/qt4-4.8.7-26.3.mga7
- 7/core/qtsvg5-5.12.6-1.1.mga7
PREVIOUS
NEXT
Publication date: 16 Jun 2021
URL: https://advisories.mageia.org/MGASA-2021-0262.html
Type: security
CVE: CVE-2021-3481
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!