qtbase-opensource-src (5.5.1+dfsg-16ubuntu7.6) xenial-security; urgency=medium
* SECURITY UPDATE: double-free or corruption via illegal XML document
- debian/patches/CVE-2018-15518.patch: fix possible heap corruption in
QXmlStream in src/corelib/xml/qxmlstream_p.h.
- CVE-2018-15518
* SECURITY UPDATE: NULL pointer dereference in QGifHandler
- debian/patches/CVE-2018-19870.patch: check for QImage allocation
failure in src/gui/image/qgifhandler.cpp.
- CVE-2018-19870
* SECURITY UPDATE: buffer overflow in QBmpHandler
- debian/patches/CVE-2018-19873.patch: check for out of range image
size in src/gui/image/qbmphandler.cpp.
- CVE-2018-19873
* debian/rules: create a HOME directory so that tests can run.
* debian/patches/fix_failing_cookie_tests.patch: fix failing tests
because of expired cookies.
Date: 2019-02-11 16:40:16.704212+00:00
Changed-By: Marc Deslauriers <marc.deslauri...@canonical.com>
Signed-By: Ubuntu Archive Robot
<cjwatson+ubuntu-archive-ro...@chiark.greenend.org.uk>
https://launchpad.net/ubuntu/+source/qtbase-opensource-src/5.5.1+dfsg-16ubuntu7.6
Sorry, changesfile not available.
--
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/xenial-changes