UbuntuUpdates.org

Package "qt4-doc-html"

Name: qt4-doc-html

Description:

Qt 4 API documentation (HTML format)
Latest version: 4:4.8.5+git192-g085f851+dfsg-2ubuntu4.1
Release: trusty (14.04)
Level: security
Repository: universe
Head package: qt4-x11
Homepage: http://qt-project.org/

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "qt4-doc-html"

All arch deb package
APT INSTALL

Other versions of "qt4-doc-html" in Trusty

Repository Area Version
base universe 4:4.8.5+git192-g085f851+dfsg-2ubuntu4
updates universe 4:4.8.5+git192-g085f851+dfsg-2ubuntu4.1

Changelog

Version: 4:4.8.5+git192-g085f851+dfsg-2ubuntu4.1 2015-06-03 15:07:01 UTC

  qt4-x11 (4:4.8.5+git192-g085f851+dfsg-2ubuntu4.1) trusty-security; urgency=medium

  * SECURITY UPDATE: denial of service via crafted GIF image
    - debian/patches/CVE-2014-0190.patch: check for broken image in
      src/gui/image/qgifhandler.cpp.
    - CVE-2014-0190
  * SECURITY UPDATE: denial of service via crafted BMP
    - debian/patches/CVE-2015-0295.patch: fix division by zero in
      src/gui/image/qbmphandler.cpp.
    - CVE-2015-0295
  * SECURITY UPDATE: denial of service and possible code execution via
    crafted BMP or ICO images
    - debian/patches/CVE-2015-1858-1859.patch: move check to better
      location in src/gui/image/qbmphandler.cpp, check depth in
      src/plugins/imageformats/ico/qicohandler.cpp.
    - CVE-2015-1858
    - CVE-2015-1859
  * SECURITY UPDATE: denial of service and possible code exection via
    crafted GIF image
    - debian/patches/CVE-2015-1860.patch: check bounds in
      src/gui/image/qgifhandler.cpp.
    - CVE-2015-1860

 -- Marc Deslauriers <email address hidden> Mon, 25 May 2015 13:49:04 -0400
CVE-2014-0190 The GIF decoder in QtGui in Qt before 5.3 allows remote attackers to cause a denial of service (NULL pointer dereference) via invalid width and heigh
CVE-2015-0295 The BMP decoder in QtGui in QT before 5.5 does not properly calculate the masks used to extract the color components, which allows remote attackers t
CVE-2015-1858 Multiple buffer overflows in the QtBase module in Qt before 4.8.7 and 5.x before 5.4.2 allow remote attackers to cause a denial of service and possib
CVE-2015-1859 Multiple buffer overflows in the QtBase module in Qt before 4.8.7 and 5.x before 5.4.2 allow remote attackers to cause a denial of service and possib
CVE-2015-1860 Multiple buffer overflows in the QtBase module in Qt before 4.8.7 and 5.x before 5.4.2 allow remote attackers to cause a denial of service and possib


About   -   Send Feedback to @ubuntu_updates