openSUSE-SU-2020:1530-1

See a problem?
Import Source
https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2020:1530-1.json
JSON Data
https://api.osv.dev/v1/vulns/openSUSE-SU-2020:1530-1
Related
Published
2020-09-25T16:21:06Z
Modified
2020-09-25T16:21:06Z
Summary
Security update for libqt4
Details

This update for libqt4 fixes the following issues:

  • Fix buffer over-read in readxbmbody (boo#1176315, CVE-2020-17507)
  • Fix 'double free or corruption' in QXmlStreamReader (boo#1118595, CVE-2018-15518)
  • Fix QBmpHandler segfault on malformed BMP file boo#1118596, CVE-2018-19873)
  • Fix crash when parsing malformed url reference (boo#1118599, CVE-2018-19869)

This update was imported from the openSUSE:Leap:15.1:Update update project. This update was imported from the openSUSE:Leap:15.2:Update update project.

References

Affected packages

SUSE:Package Hub 15 SP2 / libqt4

Package

Name
libqt4
Purl
pkg:rpm/suse/libqt4&distro=SUSE%20Package%20Hub%2015%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.8.7-bp152.4.3.1

Ecosystem specific

{
    "binaries": [
        {
            "libqt4-devel-64bit": "4.8.7-bp152.4.3.1",
            "libqt4-64bit": "4.8.7-bp152.4.3.1",
            "libqt4-sql-sqlite-64bit": "4.8.7-bp152.4.3.1",
            "libqt4-x11-64bit": "4.8.7-bp152.4.3.1",
            "libqt4-devel-doc-data": "4.8.7-bp152.4.3.1",
            "libqt4-x11": "4.8.7-bp152.4.3.1",
            "libqt4-sql-sqlite": "4.8.7-bp152.4.3.1",
            "libqt4-devel": "4.8.7-bp152.4.3.1",
            "libqt4-sql-unixODBC-64bit": "4.8.7-bp152.4.3.1",
            "libqt4-sql-64bit": "4.8.7-bp152.4.3.1",
            "libqt4-sql-unixODBC": "4.8.7-bp152.4.3.1",
            "qt4-x11-tools": "4.8.7-bp152.4.3.1",
            "libqt4-private-headers-devel": "4.8.7-bp152.4.3.1",
            "libqt4": "4.8.7-bp152.4.3.1",
            "libqt4-sql-postgresql": "4.8.7-bp152.4.3.1",
            "libqt4-devel-doc": "4.8.7-bp152.4.3.1",
            "libqt4-qt3support": "4.8.7-bp152.4.3.1",
            "libqt4-qt3support-64bit": "4.8.7-bp152.4.3.1",
            "libqt4-sql": "4.8.7-bp152.4.3.1",
            "libqt4-linguist": "4.8.7-bp152.4.3.1",
            "libqt4-sql-postgresql-64bit": "4.8.7-bp152.4.3.1"
        }
    ]
}

SUSE:Package Hub 15 SP2 / libqt4-devel-doc

Package

Name
libqt4-devel-doc
Purl
pkg:rpm/suse/libqt4-devel-doc&distro=SUSE%20Package%20Hub%2015%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.8.7-bp152.4.3.1

Ecosystem specific

{
    "binaries": [
        {
            "libqt4-devel-64bit": "4.8.7-bp152.4.3.1",
            "libqt4-64bit": "4.8.7-bp152.4.3.1",
            "libqt4-sql-sqlite-64bit": "4.8.7-bp152.4.3.1",
            "libqt4-x11-64bit": "4.8.7-bp152.4.3.1",
            "libqt4-devel-doc-data": "4.8.7-bp152.4.3.1",
            "libqt4-x11": "4.8.7-bp152.4.3.1",
            "libqt4-sql-sqlite": "4.8.7-bp152.4.3.1",
            "libqt4-devel": "4.8.7-bp152.4.3.1",
            "libqt4-sql-unixODBC-64bit": "4.8.7-bp152.4.3.1",
            "libqt4-sql-64bit": "4.8.7-bp152.4.3.1",
            "libqt4-sql-unixODBC": "4.8.7-bp152.4.3.1",
            "qt4-x11-tools": "4.8.7-bp152.4.3.1",
            "libqt4-private-headers-devel": "4.8.7-bp152.4.3.1",
            "libqt4": "4.8.7-bp152.4.3.1",
            "libqt4-sql-postgresql": "4.8.7-bp152.4.3.1",
            "libqt4-devel-doc": "4.8.7-bp152.4.3.1",
            "libqt4-qt3support": "4.8.7-bp152.4.3.1",
            "libqt4-qt3support-64bit": "4.8.7-bp152.4.3.1",
            "libqt4-sql": "4.8.7-bp152.4.3.1",
            "libqt4-linguist": "4.8.7-bp152.4.3.1",
            "libqt4-sql-postgresql-64bit": "4.8.7-bp152.4.3.1"
        }
    ]
}

SUSE:Package Hub 15 SP2 / libqt4-sql-plugins

Package

Name
libqt4-sql-plugins
Purl
pkg:rpm/suse/libqt4-sql-plugins&distro=SUSE%20Package%20Hub%2015%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.8.7-bp152.4.3.1

Ecosystem specific

{
    "binaries": [
        {
            "libqt4-devel-64bit": "4.8.7-bp152.4.3.1",
            "libqt4-64bit": "4.8.7-bp152.4.3.1",
            "libqt4-sql-sqlite-64bit": "4.8.7-bp152.4.3.1",
            "libqt4-x11-64bit": "4.8.7-bp152.4.3.1",
            "libqt4-devel-doc-data": "4.8.7-bp152.4.3.1",
            "libqt4-x11": "4.8.7-bp152.4.3.1",
            "libqt4-sql-sqlite": "4.8.7-bp152.4.3.1",
            "libqt4-devel": "4.8.7-bp152.4.3.1",
            "libqt4-sql-unixODBC-64bit": "4.8.7-bp152.4.3.1",
            "libqt4-sql-64bit": "4.8.7-bp152.4.3.1",
            "libqt4-sql-unixODBC": "4.8.7-bp152.4.3.1",
            "qt4-x11-tools": "4.8.7-bp152.4.3.1",
            "libqt4-private-headers-devel": "4.8.7-bp152.4.3.1",
            "libqt4": "4.8.7-bp152.4.3.1",
            "libqt4-sql-postgresql": "4.8.7-bp152.4.3.1",
            "libqt4-devel-doc": "4.8.7-bp152.4.3.1",
            "libqt4-qt3support": "4.8.7-bp152.4.3.1",
            "libqt4-qt3support-64bit": "4.8.7-bp152.4.3.1",
            "libqt4-sql": "4.8.7-bp152.4.3.1",
            "libqt4-linguist": "4.8.7-bp152.4.3.1",
            "libqt4-sql-postgresql-64bit": "4.8.7-bp152.4.3.1"
        }
    ]
}