SciLinux: CVE-2007-3388 qt SL5.x, SL4.x, SL3,x i386/x86_64

Date:         Wed, 1 Aug 2007 15:55:13 -0500
Reply-To:     Troy Dawson 
Sender:       Security Errata for Scientific Linux
              
From:         Troy Dawson 
Subject:      Security ERRATA for qt on SL5.x, SL4.x, SL3,x i386/x86_64
Comments: To: scientific-linux-errata@fnal.gov

Synopsis:	Moderate: qt security update
Issue date:	2007-07-31
CVE Names:	CVE-2007-3388

Several format string flaws were found in Qt error message handling.  If an
application linked against Qt created an error message from user supplied
data in a certain way, it could lead to a denial of service or possibly
allow the execution of arbitrary code. (CVE-2007-3388)

SL 3.0.x

   SRPMS:
	qt-3.1.2-16.RHEL3.src.rpm
   i386:
	qt-3.1.2-16.RHEL3.i386.rpm
	qt-config-3.1.2-16.RHEL3.i386.rpm
	qt-designer-3.1.2-16.RHEL3.i386.rpm
	qt-devel-3.1.2-16.RHEL3.i386.rpm
	qt-MySQL-3.1.2-16.RHEL3.i386.rpm
	qt-ODBC-3.1.2-16.RHEL3.i386.rpm
	qt-PostgreSQL-3.1.2-16.RHEL3.i386.rpm
   x86_64:
	qt-3.1.2-16.RHEL3.i386.rpm
	qt-3.1.2-16.RHEL3.x86_64.rpm
	qt-config-3.1.2-16.RHEL3.x86_64.rpm
	qt-designer-3.1.2-16.RHEL3.x86_64.rpm
	qt-devel-3.1.2-16.RHEL3.x86_64.rpm
	qt-MySQL-3.1.2-16.RHEL3.x86_64.rpm
	qt-ODBC-3.1.2-16.RHEL3.x86_64.rpm
	qt-PostgreSQL-3.1.2-16.RHEL3.x86_64.rpm

SL 4.x

   SRPMS:
	qt-3.3.3-11.RHEL4.src.rpm
   i386:
	qt-3.3.3-11.RHEL4.i386.rpm
	qt-config-3.3.3-11.RHEL4.i386.rpm
	qt-designer-3.3.3-11.RHEL4.i386.rpm
	qt-devel-3.3.3-11.RHEL4.i386.rpm
	qt-MySQL-3.3.3-11.RHEL4.i386.rpm
	qt-ODBC-3.3.3-11.RHEL4.i386.rpm
	qt-PostgreSQL-3.3.3-11.RHEL4.i386.rpm
   x86_64:
	qt-3.3.3-11.RHEL4.i386.rpm
	qt-3.3.3-11.RHEL4.x86_64.rpm
	qt-config-3.3.3-11.RHEL4.x86_64.rpm
	qt-designer-3.3.3-11.RHEL4.x86_64.rpm
	qt-devel-3.3.3-11.RHEL4.x86_64.rpm
	qt-MySQL-3.3.3-11.RHEL4.x86_64.rpm
	qt-ODBC-3.3.3-11.RHEL4.x86_64.rpm
	qt-PostgreSQL-3.3.3-11.RHEL4.x86_64.rpm

SL 5.x

   SRPMS:
	qt-3.3.6-21.el5.src.rpm
   i386:
	qt-3.3.6-21.el5.i386.rpm
	qt-config-3.3.6-21.el5.i386.rpm
	qt-designer-3.3.6-21.el5.i386.rpm
	qt-devel-3.3.6-21.el5.i386.rpm
	qt-devel-docs-3.3.6-21.el5.i386.rpm
	qt-MySQL-3.3.6-21.el5.i386.rpm
	qt-ODBC-3.3.6-21.el5.i386.rpm
	qt-PostgreSQL-3.3.6-21.el5.i386.rpm
   x86_64:
	qt-3.3.6-21.el5.i386.rpm
	qt-3.3.6-21.el5.x86_64.rpm
	qt-config-3.3.6-21.el5.x86_64.rpm
	qt-designer-3.3.6-21.el5.x86_64.rpm
	qt-devel-3.3.6-21.el5.i386.rpm
	qt-devel-3.3.6-21.el5.x86_64.rpm
	qt-devel-docs-3.3.6-21.el5.x86_64.rpm
	qt-MySQL-3.3.6-21.el5.x86_64.rpm
	qt-ODBC-3.3.6-21.el5.x86_64.rpm
	qt-PostgreSQL-3.3.6-21.el5.x86_64.rpm

-Connie Sieh
-Troy Dawson

Date: Wed, 1 Aug 2007 15:55:13 -0500Reply-To: Troy Dawson Sender: Security Errata for Scientific Linux From: Troy Dawson Subject: Security ERRATA for qt on SL5.x, SL4.x, SL3,x i386/x86_64Comments: To: scientific-linux-errata@fnal.govSynopsis: Moderate: qt security updateIssue date: 2007-07-31CVE Names: CVE-2007-3388Several format string flaws were found in Qt error message handling. If anapplication linked against Qt created an error message from user supplieddata in a certain way, it could lead to a denial of service or possiblyallow the execution of arbitrary code. (CVE-2007-3388)SL 3.0.x SRPMS: qt-3.1.2-16.RHEL3.src.rpm i386: qt-3.1.2-16.RHEL3.i386.rpm qt-config-3.1.2-16.RHEL3.i386.rpm qt-designer-3.1.2-16.RHEL3.i386.rpm qt-devel-3.1.2-16.RHEL3.i386.rpm qt-MySQL-3.1.2-16.RHEL3.i386.rpm qt-ODBC-3.1.2-16.RHEL3.i386.rpm qt-PostgreSQL-3.1.2-16.RHEL3.i386.rpm x86_64: qt-3.1.2-16.RHEL3.i386.rpm qt-3.1.2-16.RHEL3.x86_64.rpm qt-config-3.1.2-16.RHEL3.x86_64.rpm qt-designer-3.1.2-16.RHEL3.x86_64.rpm qt-devel-3.1.2-16.RHEL3.x86_64.rpm qt-MySQL-3.1.2-16.RHEL3.x86_64.rpm qt-ODBC-3.1.2-16.RHEL3.x86_64.rpm qt-PostgreSQL-3.1.2-16.RHEL3.x86_64.rpmSL 4.x SRPMS: qt-3.3.3-11.RHEL4.src.rpm i386: qt-3.3.3-11.RHEL4.i386.rpm qt-config-3.3.3-11.RHEL4.i386.rpm qt-designer-3.3.3-11.RHEL4.i386.rpm qt-devel-3.3.3-11.RHEL4.i386.rpm qt-MySQL-3.3.3-11.RHEL4.i386.rpm qt-ODBC-3.3.3-11.RHEL4.i386.rpm qt-PostgreSQL-3.3.3-11.RHEL4.i386.rpm x86_64: qt-3.3.3-11.RHEL4.i386.rpm qt-3.3.3-11.RHEL4.x86_64.rpm qt-config-3.3.3-11.RHEL4.x86_64.rpm qt-designer-3.3.3-11.RHEL4.x86_64.rpm qt-devel-3.3.3-11.RHEL4.x86_64.rpm qt-MySQL-3.3.3-11.RHEL4.x86_64.rpm qt-ODBC-3.3.3-11.RHEL4.x86_64.rpm qt-PostgreSQL-3.3.3-11.RHEL4.x86_64.rpmSL 5.x SRPMS: qt-3.3.6-21.el5.src.rpm i386: qt-3.3.6-21.el5.i386.rpm qt-config-3.3.6-21.el5.i386.rpm qt-designer-3.3.6-21.el5.i386.rpm qt-devel-3.3.6-21.el5.i386.rpm qt-devel-docs-3.3.6-21.el5.i386.rpm qt-MySQL-3.3.6-21.el5.i386.rpm qt-ODBC-3.3.6-21.el5.i386.rpm qt-PostgreSQL-3.3.6-21.el5.i386.rpm x86_64: qt-3.3.6-21.el5.i386.rpm qt-3.3.6-21.el5.x86_64.rpm qt-config-3.3.6-21.el5.x86_64.rpm qt-designer-3.3.6-21.el5.x86_64.rpm qt-devel-3.3.6-21.el5.i386.rpm qt-devel-3.3.6-21.el5.x86_64.rpm qt-devel-docs-3.3.6-21.el5.x86_64.rpm qt-MySQL-3.3.6-21.el5.x86_64.rpm qt-ODBC-3.3.6-21.el5.x86_64.rpm qt-PostgreSQL-3.3.6-21.el5.x86_64.rpm-Connie Sieh-Troy Dawson

SciLinux: CVE-2007-3388 qt SL5.x, SL4.x, SL3,x i386/x86_64

Summary

Security Fixes

Related News

Get the Latest News & Insights

News

Advisories

HOWTOs

Features

About Us

Powered By