SUSE: 2019:0447-1 Moderate: Fixes For libqt5-qtbase Double Free And DoS
suse
February 20, 2019
An update that solves two vulnerabilities and has four fixes is now available
Summary
This update for libqt5-qtbase provides the following fixes: Security issues fixed: - CVE-2018-15518: Fixed double free in QXmlStreamReader (bsc#1118595) - CVE-2018-19873: Fixed Denial of Service on malformed BMP file in QBmpHandler (bsc#1118596) Non-security issues fixed: - Fix dynamic loading of libGL. (bsc#1099874) - Make sure printer settings are properly remembered. (bsc#1096328) - Add patch to fix fails to load pixmap cursors on XRender less system (bsc#1108889) - Fix krita pop-up palette not working properly (bsc#1120639) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product:
References
#1096328 #1099874 #1108889 #1118595 #1118596
#1120639
Cross- CVE-2018-15518 CVE-2018-19873
Affected Products:
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15
SUSE Linux Enterprise Module for Desktop Applications 15
SUSE Linux Enterprise Module for Basesystem 15
https://www.suse.com/security/cve/CVE-2018-15518.html
https://www.suse.com/security/cve/CVE-2018-19873.html
https://bugzilla.suse.com/1096328
https://bugzilla.suse.com/1099874
https://bugzilla.suse.com/1108889
https://bugzilla.suse.com/1118595
https://bugzilla.suse.com/1118596
https://bugzilla.suse.com/1120639
PREVIOUS
NEXT
Announcement ID: SUSE-SU-2019:0447-1
Rating: moderate
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!