[Git][security-tracker-team/security-tracker][master] Updat information for CVE-2020-24742 specifically for qt4-x11

Tue, 17 Aug 2021 13:04:41 -0700 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
d8f84ab9 by Salvatore Bonaccorso at 2021-08-17T22:03:00+02:00
Updat information for CVE-2020-24742 specifically for qt4-x11

The issue was introduced in any later version ever present for qt4-x11
in unstable. The latest in unstable was 4:4.8.7+dfsg-20, which did not
contain the vulnerability so it's safe to switch to <not-affected> 
here
in this case.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -65682,8 +65682,7 @@ CVE-2020-24742 (An issue has been fixed in Qt versions 
5.14.0 where QPluginLoade
        - qtbase-opensource-src 5.12.5+dfsg-8
        [stretch] - qtbase-opensource-src 5.7.1+dfsg-3+deb9u2
        - qtbase-opensource-src-gles 5.14.2+dfsg-3
-       - qt4-x11 <removed>
-       [stretch] - qt4-x11 <not-affected> (Vulnerable code introduced later)
+       - qt4-x11 <not-affected> (Vulnerable code introduced later)
        NOTE: https://codereview.qt-project.org/c/qt/qtbase/+/280730
        NOTE: Introduced in 
https://codereview.qt-project.org/gitweb?p=qt/qtbase.git;a=commitdiff;h=3146dadb42cb36aff83a62e831b8b4f4dc1562a7
 (v5.6.0-alpha1)
        NOTE: Fixed by: 
https://codereview.qt-project.org/gitweb?p=qt/qtbase.git;a=commitdiff;h=bf131e8d2181b3404f5293546ed390999f760404
 (v5.14.0-rc1)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d8f84ab9c476aca6e50706f3fea23c4f8265a029

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d8f84ab9c476aca6e50706f3fea23c4f8265a029
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to