Actualités informatiques

DSA-4617 qtbase-opensource-src

Debian Security Advisory

DSA-4617-1 qtbase-opensource-src -- security update

Date Reported:
03 Feb 2020
Affected Packages:
Security database references:
In Mitre's CVE dictionary: CVE-2020-0569, CVE-2020-0570.
More information:

Two security issues were found in the Qt library, which could result in plugins and libraries being loaded from the current working directory, resulting in potential code execution.

For the oldstable distribution (stretch), these problems have been fixed in version 5.7.1+dfsg-3+deb9u2.

For the stable distribution (buster), these problems have been fixed in version 5.11.3+dfsg1-1+deb10u3.

We recommend that you upgrade your qtbase-opensource-src packages.

For the detailed security status of qtbase-opensource-src please refer to its security tracker page at: https://security-tracker.debian.org/tracker/qtbase-opensource-src