Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Mageia 8: MGASA-2021-0493 Moderate: Qtbase5 Denial Of Service

mageia
Calendar Grey October 27, 2021
Dist Mageia Esm H88
Latest qtbase5 package updates fix security vulnerabilities in Mageia 8, especially regarding Denial of Service (DoS) risks. Learn more about CVE-2021-38593
It was discovered that Qt incorrectly handled certain XBM image files

Summary

It was discovered that Qt incorrectly handled certain XBM image files. If a user or automated system were tricked into opening a specially crafted PPM file, a remote attacker could cause Qt to crash, resulting in a denial of service. (CVE-2020-17507)
It was discovered that Qt incorrectly handled certain graphics operations. If a user or automated system were tricked into performing certain graphics operations, a remote attacker could cause Qt to crash, resulting in a denial of service. (CVE-2021-38593)

References

- https://bugs.mageia.org/show_bug.cgi?id=29468

- https://ubuntu.com/security/notices/USN-5081-1

- https://www.cve.org/CVERecord?id=CVE-2021-38593

- https://www.cve.org/CVERecord?id=CVE-2020-17507

Topics%20covered

Topics Covered

security advisory denial of service security issue software update Mageia Qtbase5 graphics operation

Resolution

SRPMS

- 8/core/qtbase5-5.15.2-4.4.mga8

Publication date: 27 Oct 2021
URL: https://advisories.mageia.org/MGASA-2021-0493.html
Type: security
CVE: CVE-2021-38593, CVE-2020-17507

Topics%20covered

Topics Covered

security advisory denial of service security issue software update Mageia Qtbase5 graphics operation

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here