This bug was fixed in the package qtbase-opensource-src - 5.15.2+dfsg-14
---------------
qtbase-opensource-src (5.15.2+dfsg-14) unstable; urgency=medium
* Backport four upstream commits to fix massive memory consumption when
rendering specially crafted SVG files (CVE-2021-38593, LP: #1950193).
* Update symbols files from buildds’ logs.
* Override some source-is-missing and unpack-message-for-orig warnings.
-- Dmitry Shachnev <[email protected]> Sun, 28 Nov 2021 17:12:50
+0300
** Changed in: qtbase-opensource-src (Ubuntu)
Status: In Progress => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/1950193
Title:
libqt5svg5 affected by CVE-2021-38593
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/qtbase-opensource-src/+bug/1950193/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs