Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

openSUSE: 2020:1568-1 Important: libqt5-qtbase Buffer Overflow

opensuse
Calendar Grey September 28, 2020
Dist Opensuse Esm H88
Libqt5-qtbase security patch resolves significant buffer overflow vulnerability. Key information enclosed.
An update that solves one vulnerability and has one errata is now available.

Description

This update for libqt5-qtbase fixes the following issues:

- CVE-2020-17507: Fixed a buffer overflow in XBM parser (bsc#1176315)

- Made handling of XDG_RUNTIME_DIR more secure (bsc#1172515)

This update was imported from the SUSE:SLE-15-SP1:Update update project.

Topics%20covered

Topics Covered

security advisory buffer overflow important update openSUSE libqt5-qtbase

Patch

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods

like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- openSUSE Leap 15.1:

zypper in -t patch openSUSE-2020-1568=1

Package List

- openSUSE Leap 15.1 (noarch):

libQt5Core-private-headers-devel-5.9.7-lp151.4.6.1

libQt5DBus-private-headers-devel-5.9.7-lp151.4.6.1

libQt5Gui-private-headers-devel-5.9.7-lp151.4.6.1

libQt5KmsSupport-private-headers-devel-5.9.7-lp151.4.6.1

libQt5Network-private-headers-devel-5.9.7-lp151.4.6.1

libQt5OpenGL-private-headers-devel-5.9.7-lp151.4.6.1

libQt5PlatformSupport-private-headers-devel-5.9.7-lp151.4.6.1

libQt5PrintSupport-private-headers-devel-5.9.7-lp151.4.6.1

libQt5Sql-private-headers-devel-5.9.7-lp151.4.6.1

libQt5Test-private-headers-devel-5.9.7-lp151.4.6.1

libQt5Widgets-private-headers-devel-5.9.7-lp151.4.6.1

libqt5-qtbase-private-headers-devel-5.9.7-lp151.4.6.1

- openSUSE Leap 15.1 (x86_64):

libQt5Bootstrap-devel-static-5.9.7-lp151.4.6.1

libQt5Concurrent-devel-5.9.7-lp151.4.6.1

libQt5Concurrent5-5.9.7-lp151.4.6.1

libQt5Concurrent5-debuginfo-5.9.7-lp151.4.6.1

libQt5Core-devel-5.9.7-lp151.4.6.1

libQt5Core5-5.9.7-lp151.4.6.1

libQt5Core5-debuginfo-5.9.7-lp151.4.6.1

libQt5DBus-devel-5.9.7-lp151.4.6.1

libQ...

Read the Full Advisory

References

https://www.suse.com/security/cve/CVE-2020-17507.html

https://bugzilla.suse.com/1172515

https://bugzilla.suse.com/1176315

--

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2020:1568-1
Rating: important
Affected Products: openSUSE Leap 15.1 le.

Topics%20covered

Topics Covered

security advisory buffer overflow important update openSUSE libqt5-qtbase

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here