This bug was fixed in the package qtbase-opensource-src - 5.0.2+dfsg1-7ubuntu13
--------------- qtbase-opensource-src (5.0.2+dfsg1-7ubuntu13) trusty; urgency=low * SECURITY UPDATE: [XML Entity Expansion Denial of Service] (LP: #1259577). - add limit in src/xml/sax/qxml.cpp - http://lists.qt-project.org/pipermail/announce/2013-December/000036.html - CVE-2013-4549 -- Jonathan Riddell <jridd...@ubuntu.com> Tue, 10 Dec 2013 15:08:17 +0000 ** Changed in: qtbase-opensource-src (Ubuntu Trusty) Status: New => Fix Released -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1259577 Title: Security: XML Entity Expansion Denial of Service To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/qt4-x11/+bug/1259577/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs