[website] r1483 - in html/trunk/blfs/errata: 8.4 8.4-systemd

Mon, 17 Jun 2019 19:16:45 -0700 

Author: renodr
Date: Mon Jun 17 18:56:31 2019
New Revision: 1483

Log:
Add Errata for QtWebEngine vulnerabilities discovered in June. These allow for 
remote code execution/arbitrary code execution, unauthorized file modification, 
denial of service, memory modification, and several other issues.

Modified:
   html/trunk/blfs/errata/8.4-systemd/index.html
   html/trunk/blfs/errata/8.4/index.html

Modified: html/trunk/blfs/errata/8.4-systemd/index.html
==============================================================================
--- html/trunk/blfs/errata/8.4-systemd/index.html       Mon Jun 17 00:03:21 
2019        (r1482)
+++ html/trunk/blfs/errata/8.4-systemd/index.html       Mon Jun 17 18:56:31 
2019        (r1483)
@@ -105,4 +105,10 @@
      been fixed in version 8.1.1365, see the instructions in
      ../../view/systemd/postlfs/editors/vim html.</p>
 
+     <p>In June, 23 security vulnerabilities that allow for arbitrary code 
execution,
+     sandbox escape, URL forging, denial of service, and remote modification of
+     memory were discovered in QtWebEngine. This has been fixed by updating to
+     Qt/QtWebEngine 5.12.4, and upgrading ASAP is recommended. See the 
instructions
+     in ../../view/systemd/x/qt5.html.</p>
+
 <!--#include virtual="/common/footer.html" -->

Modified: html/trunk/blfs/errata/8.4/index.html
==============================================================================
--- html/trunk/blfs/errata/8.4/index.html       Mon Jun 17 00:03:21 2019        
(r1482)
+++ html/trunk/blfs/errata/8.4/index.html       Mon Jun 17 18:56:31 2019        
(r1483)
@@ -108,6 +108,13 @@
      been fixed in version 8.1.1365, see the instructions in
      ../../view/svn/postlfs/editors/vim html.</p>
 
+     <p>In June, 23 security vulnerabilities that allow for arbitrary code 
execution,
+     sandbox escape, URL forging, denial of service, and remote modification of
+     memory were discovered in QtWebEngine. This has been fixed by updating to
+     Qt/QtWebEngine 5.12.4, and upgrading ASAP is recommended. See the 
instructions
+     in ../../view/svn/x/qt5.html.</p>
+
+
 <!--
      <p>A vulnerability with available exploits in all recent versions of
      ghostscript has been fixed in the development book by patching gs-9.25.
-- 
http://lists.linuxfromscratch.org/listinfo/website
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Reply via email to