MGASA-2023-0231

Source
https://advisories.mageia.org/MGASA-2023-0231.html
Import Source
https://advisories.mageia.org/MGASA-2023-0231.json
JSON Data
https://api.test.osv.dev/v1/vulns/MGASA-2023-0231
Related
Published
2023-07-19T19:53:31Z
Modified
2023-07-19T18:34:17Z
Summary
Updated qt4/qtsvg5 packages fix security vulnerability
Details

Out-of-bounds write in QtPrivate::QCommonArrayOps<QPainterPath::Element>::growAppend (CVE-2021-45930) QtSvg QSvgFont m_unitsPerEm initialization is mishandled. (CVE-2023-32573)

References
Credits

Affected packages

Mageia:8 / qtsvg5

Package

Name
qtsvg5
Purl
pkg:rpm/mageia/qtsvg5?distro=mageia-8

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.15.2-1.3.mga8

Ecosystem specific

{
    "section": "core"
}

Mageia:8 / qt4

Package

Name
qt4
Purl
pkg:rpm/mageia/qt4?distro=mageia-8

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.8.7-35.3.mga8

Ecosystem specific

{
    "section": "core"
}