openSUSE: 2021:3354-1 moderate: libqt5-qtsvg
Description
This update for libqt5-qtsvg fixes the following issues: - CVE-2021-3481: Fixed an out of bounds read in function QRadialFetchSimd from crafted svg file. (bsc#1184783)
Patch
Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2021-3354=1
Package List
- openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): libQt5Svg5-5.12.7-3.3.1 libQt5Svg5-debuginfo-5.12.7-3.3.1 libqt5-qtsvg-debugsource-5.12.7-3.3.1 libqt5-qtsvg-devel-5.12.7-3.3.1 libqt5-qtsvg-examples-5.12.7-3.3.1 libqt5-qtsvg-examples-debuginfo-5.12.7-3.3.1 - openSUSE Leap 15.3 (x86_64): libQt5Svg5-32bit-5.12.7-3.3.1 libQt5Svg5-32bit-debuginfo-5.12.7-3.3.1 libqt5-qtsvg-devel-32bit-5.12.7-3.3.1 - openSUSE Leap 15.3 (noarch): libqt5-qtsvg-private-headers-devel-5.12.7-3.3.1
References
https://www.suse.com/security/cve/CVE-2021-3481.html https://bugzilla.suse.com/1184783