CentOS Local Security Checks : CentOS: Security Advisory for qt (CESA-2020:5021)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.883294

Categoría: CentOS Local Security Checks

Título: CentOS: Security Advisory for qt (CESA-2020:5021)

Resumen: The remote host is missing an update for the 'qt'; package(s) announced via the CESA-2020:5021 advisory.

Descripción: Summary:
The remote host is missing an update for the 'qt'
package(s) announced via the CESA-2020:5021 advisory.

Vulnerability Insight:
The qt packages contain a software toolkit that simplifies the task of
writing and maintaining Graphical User Interface (GUI) applications for the
X Window System.

Qt is a software toolkit for developing applications. The qt5-base packages
contain base tools for string, xml, and network handling in Qt.

Security Fix(es):

* qt: buffer over-read in read_xbm_body in gui/image/qxbmhandler.cpp
(CVE-2020-17507)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.

Affected Software/OS:
'qt' package(s) on CentOS 7.

Solution:
Please install the updated package(s).

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2020-17507
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NBPZVZNEYXGATTXM4WOE7OQ55VAKPVD6/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/426FCC6JNK4JUEX5QHJQDYQ6MUVQ3E6P/
https://security.gentoo.org/glsa/202009-04
https://codereview.qt-project.org/c/qt/qtbase/+/308436
https://codereview.qt-project.org/c/qt/qtbase/+/308495
https://codereview.qt-project.org/c/qt/qtbase/+/308496
https://lists.debian.org/debian-lts-announce/2020/09/msg00024.html
https://lists.debian.org/debian-lts-announce/2020/09/msg00023.html
SuSE Security Announcement: openSUSE-SU-2020:1452 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00057.html
SuSE Security Announcement: openSUSE-SU-2020:1500 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00071.html
SuSE Security Announcement: openSUSE-SU-2020:1501 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00073.html
SuSE Security Announcement: openSUSE-SU-2020:1530 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00090.html
SuSE Security Announcement: openSUSE-SU-2020:1564 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00104.html
SuSE Security Announcement: openSUSE-SU-2020:1568 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00105.html

Copyright Copyright (C) 2020 Greenbone Networks GmbH

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.883294
Categoría:	CentOS Local Security Checks
Título:	CentOS: Security Advisory for qt (CESA-2020:5021)
Resumen:	The remote host is missing an update for the 'qt'; package(s) announced via the CESA-2020:5021 advisory.
Descripción:	Summary: The remote host is missing an update for the 'qt' package(s) announced via the CESA-2020:5021 advisory. Vulnerability Insight: The qt packages contain a software toolkit that simplifies the task of writing and maintaining Graphical User Interface (GUI) applications for the X Window System. Qt is a software toolkit for developing applications. The qt5-base packages contain base tools for string, xml, and network handling in Qt. Security Fix(es): * qt: buffer over-read in read_xbm_body in gui/image/qxbmhandler.cpp (CVE-2020-17507) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Affected Software/OS: 'qt' package(s) on CentOS 7. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2020-17507 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NBPZVZNEYXGATTXM4WOE7OQ55VAKPVD6/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/426FCC6JNK4JUEX5QHJQDYQ6MUVQ3E6P/ https://security.gentoo.org/glsa/202009-04 https://codereview.qt-project.org/c/qt/qtbase/+/308436 https://codereview.qt-project.org/c/qt/qtbase/+/308495 https://codereview.qt-project.org/c/qt/qtbase/+/308496 https://lists.debian.org/debian-lts-announce/2020/09/msg00024.html https://lists.debian.org/debian-lts-announce/2020/09/msg00023.html SuSE Security Announcement: openSUSE-SU-2020:1452 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00057.html SuSE Security Announcement: openSUSE-SU-2020:1500 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00071.html SuSE Security Announcement: openSUSE-SU-2020:1501 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00073.html SuSE Security Announcement: openSUSE-SU-2020:1530 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00090.html SuSE Security Announcement: openSUSE-SU-2020:1564 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00104.html SuSE Security Announcement: openSUSE-SU-2020:1568 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00105.html
Copyright	Copyright (C) 2020 Greenbone Networks GmbH