Package "qtbase-opensource-src"

Name: qtbase-opensource-src


This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • Qt 5 concurrent module
  • Qt 5 core module
  • Qt 5 D-Bus module
  • Qt 5 GUI module

Latest version: 5.5.1+dfsg-16ubuntu7.7
Release: xenial (16.04)
Level: updates
Repository: main


Other versions of "qtbase-opensource-src" in Xenial

Repository Area Version
base main 5.5.1+dfsg-16ubuntu7
base universe 5.5.1+dfsg-16ubuntu7
security main 5.5.1+dfsg-16ubuntu7.7
security universe 5.5.1+dfsg-16ubuntu7.7
updates universe 5.5.1+dfsg-16ubuntu7.7
PPA: Kubuntu-ppa Backports 5.6.1+dfsg-3ubuntu1~xenialoverlay1~4+fix1

Packages in group

Deleted packages are displayed in grey.


Version: 5.5.1+dfsg-16ubuntu7.7 2020-02-10 15:07:06 UTC

  qtbase-opensource-src (5.5.1+dfsg-16ubuntu7.7) xenial-security; urgency=medium

  * SECURITY UPDATE: division-by-zero via malformed PPM image
    - debian/patches/CVE-2018-19872.patch: add extra check to
    - CVE-2018-19872
  * SECURITY UPDATE: QPluginLoader loads plugins from the CWD
    - debian/patches/CVE-2020-0569.patch: do not load plugin from the $PWD
      in src/corelib/plugin/qpluginloader.cpp.
    - CVE-2020-0569

 -- Marc Deslauriers <email address hidden> Fri, 07 Feb 2020 10:43:53 -0500

Source diff to previous version
CVE-2018-19872 An issue was discovered in Qt 5.11. A malformed PPM image causes a division by zero and a crash in qppmhandler.cpp.

Version: 5.5.1+dfsg-16ubuntu7.6 2019-06-03 17:07:16 UTC

  qtbase-opensource-src (5.5.1+dfsg-16ubuntu7.6) xenial-security; urgency=medium

  * SECURITY UPDATE: double-free or corruption via illegal XML document
    - debian/patches/CVE-2018-15518.patch: fix possible heap corruption in
      QXmlStream in src/corelib/xml/qxmlstream_p.h.
    - CVE-2018-15518
  * SECURITY UPDATE: NULL pointer dereference in QGifHandler
    - debian/patches/CVE-2018-19870.patch: check for QImage allocation
      failure in src/gui/image/qgifhandler.cpp.
    - CVE-2018-19870
  * SECURITY UPDATE: buffer overflow in QBmpHandler
    - debian/patches/CVE-2018-19873.patch: check for out of range image
      size in src/gui/image/qbmphandler.cpp.
    - CVE-2018-19873
  * debian/rules: create a HOME directory so that tests can run.
  * debian/patches/fix_failing_cookie_tests.patch: fix failing tests
    because of expired cookies.

 -- Marc Deslauriers <email address hidden> Mon, 11 Feb 2019 07:32:35 -0500

Source diff to previous version
CVE-2018-15518 QXmlStream in Qt 5.x before 5.11.3 has a double-free or corruption during parsing of a specially crafted illegal XML document.
CVE-2018-19870 An issue was discovered in Qt before 5.11.3. A malformed GIF image causes a NULL pointer dereference in QGifHandler resulting in a segmentation fault
CVE-2018-19873 An issue was discovered in Qt before 5.11.3. QBmpHandler has a buffer overflow via BMP data.

Version: 5.5.1+dfsg-16ubuntu7.5 2017-06-12 20:06:44 UTC

  qtbase-opensource-src (5.5.1+dfsg-16ubuntu7.5) xenial; urgency=medium

  * Backport upstream change to fix behavior of QMenuBar::isNativeMenuBar()
    method (fix_isNativeMenuBar.diff). This should finally fix LP: #1380702.

 -- Dmitry Shachnev <email address hidden> Wed, 03 May 2017 22:22:47 +0300

Source diff to previous version
1380702 No keyboards shortcuts in QT apps

Version: 5.5.1+dfsg-16ubuntu7.2 2016-10-27 18:06:40 UTC

  qtbase-opensource-src (5.5.1+dfsg-16ubuntu7.2) xenial; urgency=medium

  * debian/patches/Fix-parsing-of-tzfile-5-POSIX-rule-zone-names-with-b.patch:
    - Backport a timezone conversion fix from Qt 5.6.2 (LP: #1622089)

 -- Timo Jyrinki <email address hidden> Mon, 12 Sep 2016 05:49:32 +0000

Source diff to previous version
1622089 timezone parser in qt-5.5 breaks KDE clock

Version: 5.5.1+dfsg-16ubuntu7.1 2016-05-30 09:06:40 UTC

  qtbase-opensource-src (5.5.1+dfsg-16ubuntu7.1) xenial; urgency=medium

  * debian/patches/Blacklist-Mali-T760-Mali-T720-from-supporting-BGRA.patch
    - Backport from upstream 5.6 (LP: #1557915) (LP: #1559906)
  * Add two patches from stable Qt 5.6 branch to fix another case of
    QXcbWindow crashes (LP: #1571158).
    - debian/patches/Fix-crash-because-of-NULL-screen-in-QXcbWindow.patch
    - debian/patches/QtGui-Don-t-set-a-screen-to-a-child-window.patch
  * Fix drag and drop issues with patches from upstream. (LP: #1577313)
    - debian/patches/xcb-Fix-drag-and-drop-to-Emacs.patch
    - debian/patches/xcb-Fix-drag-and-drop-to-applications-like-Emacs-and.patch

 -- Timo Jyrinki <email address hidden> Mon, 02 May 2016 12:24:35 +0000

1557915 bgra support broken on Mali T760
1559906 bgra support broken on Mali T720
1571158 Crash in QXcbWindow::setParent() due to NULL xcbScreen()
1577313 Drag and drop not working from Qt to some applications

About   -   Send Feedback to @ubuntu_updates