SUSE-SU-2015:1359-1

Source
https://www.suse.com/support/update/announcement/2015/suse-su-20151359-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2015:1359-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2015:1359-1
Related
Published
2015-05-27T13:53:24Z
Modified
2015-05-27T13:53:24Z
Summary
Security update for libqt4
Details

The libqt4 library was updated to fix several security and non security issues.

The following vulnerabilities were fixed: - bsc#921999: CVE-2015-0295: division by zero when processing malformed BMP files - bsc#927806: CVE-2015-1858: segmentation fault in BMP Qt Image Format Handling - bsc#927807: CVE-2015-1859: segmentation fault in ICO Qt Image Format Handling - bsc#927808: CVE-2015-1860: segmentation fault in GIF Qt Image Format Handling

The following non-secuirty issues were fixed: - bsc#929688: Critical Problem in Qt Network Stack - bsc#847880: kde/qt rendering error in qemu cirrus i586 - Update use-freetype-default.diff to use same method as with libqt5-qtbase package: Qt itself already does runtime check whether subpixel rendering is available, but only when FTCONFIGOPTIONSUBPIXELRENDERING is defined. Thus it is enough to only remove that condition - The -devel subpackage requires Mesa-devel, not only at build time - Fixed compilation on SLE11SP3 by making it build against Mesa-devel on that system - Replace patch l-qclipboardfixrecursive.patch with qtcore-4.8.5-qeventdispatcher-recursive.patch. The later one seems to work better and really resolves the issue in LibreOffice - Added kde4qtpluginpath.patch, so kde4 plugins are magically found/known outside kde4 enviroment/session - added _constraints. building took up to 7GB of disk space on s390x, and more than 6GB on x8664 - Add 3 patches for Qt bugs to make LibreOffice KDE4 file picker work properly again: * Add glib-honor-ExcludeSocketNotifiers-flag.diff (QTBUG-37380) * Add l-qclipboardfixrecursive.patch (QTBUG-34614) * Add l-qclipboard_delay.patch (QTBUG-38585)

References

Affected packages

SUSE:Linux Enterprise Desktop 12 / libqt4

Package

Name
libqt4
Purl
purl:rpm/suse/libqt4&distro=SUSE%20Linux%20Enterprise%20Desktop%2012

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.8.6-4.2

Ecosystem specific

{
    "binaries": [
        {
            "libqt4-sql-mysql": "4.8.6-4.1",
            "libqt4-sql-mysql-32bit": "4.8.6-4.1",
            "libqt4-sql-sqlite-32bit": "4.8.6-4.2",
            "libqt4-x11": "4.8.6-4.2",
            "libqt4-sql-sqlite": "4.8.6-4.2",
            "libqt4-sql-unixODBC-32bit": "4.8.6-4.1",
            "libqt4-sql-32bit": "4.8.6-4.2",
            "libqt4-sql-postgresql-32bit": "4.8.6-4.1",
            "libqt4-sql-unixODBC": "4.8.6-4.1",
            "libqt4": "4.8.6-4.2",
            "libqt4-sql-postgresql": "4.8.6-4.1",
            "libqt4-qt3support-32bit": "4.8.6-4.2",
            "libqt4-x11-32bit": "4.8.6-4.2",
            "libqt4-qt3support": "4.8.6-4.2",
            "libqt4-sql": "4.8.6-4.2",
            "libqt4-32bit": "4.8.6-4.2"
        }
    ]
}

SUSE:Linux Enterprise Desktop 12 / libqt4-sql-plugins

Package

Name
libqt4-sql-plugins
Purl
purl:rpm/suse/libqt4-sql-plugins&distro=SUSE%20Linux%20Enterprise%20Desktop%2012

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.8.6-4.1

Ecosystem specific

{
    "binaries": [
        {
            "libqt4-sql-mysql": "4.8.6-4.1",
            "libqt4-sql-mysql-32bit": "4.8.6-4.1",
            "libqt4-sql-sqlite-32bit": "4.8.6-4.2",
            "libqt4-x11": "4.8.6-4.2",
            "libqt4-sql-sqlite": "4.8.6-4.2",
            "libqt4-sql-unixODBC-32bit": "4.8.6-4.1",
            "libqt4-sql-32bit": "4.8.6-4.2",
            "libqt4-sql-postgresql-32bit": "4.8.6-4.1",
            "libqt4-sql-unixODBC": "4.8.6-4.1",
            "libqt4": "4.8.6-4.2",
            "libqt4-sql-postgresql": "4.8.6-4.1",
            "libqt4-qt3support-32bit": "4.8.6-4.2",
            "libqt4-x11-32bit": "4.8.6-4.2",
            "libqt4-qt3support": "4.8.6-4.2",
            "libqt4-sql": "4.8.6-4.2",
            "libqt4-32bit": "4.8.6-4.2"
        }
    ]
}

SUSE:Linux Enterprise Software Development Kit 12 / libqt4

Package

Name
libqt4
Purl
purl:rpm/suse/libqt4&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.8.6-4.2

Ecosystem specific

{
    "binaries": [
        {
            "libqt4-sql-unixODBC": "4.8.6-4.1",
            "libqt4-private-headers-devel": "4.8.6-4.2",
            "libqt4-devel-doc-data": "4.8.6-4.6",
            "libqt4-sql-postgresql": "4.8.6-4.1",
            "libqt4-sql-unixODBC-32bit": "4.8.6-4.1",
            "libqt4-devel-doc": "4.8.6-4.6",
            "libqt4-devel": "4.8.6-4.2",
            "libqt4-sql-postgresql-32bit": "4.8.6-4.1",
            "libqt4-linguist": "4.8.6-4.2"
        }
    ]
}

SUSE:Linux Enterprise Software Development Kit 12 / libqt4-devel-doc

Package

Name
libqt4-devel-doc
Purl
purl:rpm/suse/libqt4-devel-doc&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.8.6-4.6

Ecosystem specific

{
    "binaries": [
        {
            "libqt4-sql-unixODBC": "4.8.6-4.1",
            "libqt4-private-headers-devel": "4.8.6-4.2",
            "libqt4-devel-doc-data": "4.8.6-4.6",
            "libqt4-sql-postgresql": "4.8.6-4.1",
            "libqt4-sql-unixODBC-32bit": "4.8.6-4.1",
            "libqt4-devel-doc": "4.8.6-4.6",
            "libqt4-devel": "4.8.6-4.2",
            "libqt4-sql-postgresql-32bit": "4.8.6-4.1",
            "libqt4-linguist": "4.8.6-4.2"
        }
    ]
}

SUSE:Linux Enterprise Software Development Kit 12 / libqt4-sql-plugins

Package

Name
libqt4-sql-plugins
Purl
purl:rpm/suse/libqt4-sql-plugins&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.8.6-4.1

Ecosystem specific

{
    "binaries": [
        {
            "libqt4-sql-unixODBC": "4.8.6-4.1",
            "libqt4-private-headers-devel": "4.8.6-4.2",
            "libqt4-devel-doc-data": "4.8.6-4.6",
            "libqt4-sql-postgresql": "4.8.6-4.1",
            "libqt4-sql-unixODBC-32bit": "4.8.6-4.1",
            "libqt4-devel-doc": "4.8.6-4.6",
            "libqt4-devel": "4.8.6-4.2",
            "libqt4-sql-postgresql-32bit": "4.8.6-4.1",
            "libqt4-linguist": "4.8.6-4.2"
        }
    ]
}

SUSE:Linux Enterprise Server 12 / libqt4

Package

Name
libqt4
Purl
purl:rpm/suse/libqt4&distro=SUSE%20Linux%20Enterprise%20Server%2012

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.8.6-4.2

Ecosystem specific

{
    "binaries": [
        {
            "libqt4-sql-mysql": "4.8.6-4.1",
            "qt4-x11-tools": "4.8.6-4.6",
            "libqt4": "4.8.6-4.2",
            "libqt4-x11-32bit": "4.8.6-4.2",
            "libqt4-qt3support-32bit": "4.8.6-4.2",
            "libqt4-sql-32bit": "4.8.6-4.2",
            "libqt4-qt3support": "4.8.6-4.2",
            "libqt4-x11": "4.8.6-4.2",
            "libqt4-sql": "4.8.6-4.2",
            "libqt4-sql-sqlite": "4.8.6-4.2",
            "libqt4-32bit": "4.8.6-4.2"
        }
    ]
}

SUSE:Linux Enterprise Server 12 / libqt4-devel-doc

Package

Name
libqt4-devel-doc
Purl
purl:rpm/suse/libqt4-devel-doc&distro=SUSE%20Linux%20Enterprise%20Server%2012

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.8.6-4.6

Ecosystem specific

{
    "binaries": [
        {
            "libqt4-sql-mysql": "4.8.6-4.1",
            "qt4-x11-tools": "4.8.6-4.6",
            "libqt4": "4.8.6-4.2",
            "libqt4-x11-32bit": "4.8.6-4.2",
            "libqt4-qt3support-32bit": "4.8.6-4.2",
            "libqt4-sql-32bit": "4.8.6-4.2",
            "libqt4-qt3support": "4.8.6-4.2",
            "libqt4-x11": "4.8.6-4.2",
            "libqt4-sql": "4.8.6-4.2",
            "libqt4-sql-sqlite": "4.8.6-4.2",
            "libqt4-32bit": "4.8.6-4.2"
        }
    ]
}

SUSE:Linux Enterprise Server 12 / libqt4-sql-plugins

Package

Name
libqt4-sql-plugins
Purl
purl:rpm/suse/libqt4-sql-plugins&distro=SUSE%20Linux%20Enterprise%20Server%2012

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.8.6-4.1

Ecosystem specific

{
    "binaries": [
        {
            "libqt4-sql-mysql": "4.8.6-4.1",
            "qt4-x11-tools": "4.8.6-4.6",
            "libqt4": "4.8.6-4.2",
            "libqt4-x11-32bit": "4.8.6-4.2",
            "libqt4-qt3support-32bit": "4.8.6-4.2",
            "libqt4-sql-32bit": "4.8.6-4.2",
            "libqt4-qt3support": "4.8.6-4.2",
            "libqt4-x11": "4.8.6-4.2",
            "libqt4-sql": "4.8.6-4.2",
            "libqt4-sql-sqlite": "4.8.6-4.2",
            "libqt4-32bit": "4.8.6-4.2"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 / libqt4

Package

Name
libqt4
Purl
purl:rpm/suse/libqt4&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.8.6-4.2

Ecosystem specific

{
    "binaries": [
        {
            "libqt4-sql-mysql": "4.8.6-4.1",
            "qt4-x11-tools": "4.8.6-4.6",
            "libqt4": "4.8.6-4.2",
            "libqt4-x11-32bit": "4.8.6-4.2",
            "libqt4-qt3support-32bit": "4.8.6-4.2",
            "libqt4-sql-32bit": "4.8.6-4.2",
            "libqt4-qt3support": "4.8.6-4.2",
            "libqt4-x11": "4.8.6-4.2",
            "libqt4-sql": "4.8.6-4.2",
            "libqt4-sql-sqlite": "4.8.6-4.2",
            "libqt4-32bit": "4.8.6-4.2"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 / libqt4-devel-doc

Package

Name
libqt4-devel-doc
Purl
purl:rpm/suse/libqt4-devel-doc&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.8.6-4.6

Ecosystem specific

{
    "binaries": [
        {
            "libqt4-sql-mysql": "4.8.6-4.1",
            "qt4-x11-tools": "4.8.6-4.6",
            "libqt4": "4.8.6-4.2",
            "libqt4-x11-32bit": "4.8.6-4.2",
            "libqt4-qt3support-32bit": "4.8.6-4.2",
            "libqt4-sql-32bit": "4.8.6-4.2",
            "libqt4-qt3support": "4.8.6-4.2",
            "libqt4-x11": "4.8.6-4.2",
            "libqt4-sql": "4.8.6-4.2",
            "libqt4-sql-sqlite": "4.8.6-4.2",
            "libqt4-32bit": "4.8.6-4.2"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 / libqt4-sql-plugins

Package

Name
libqt4-sql-plugins
Purl
purl:rpm/suse/libqt4-sql-plugins&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.8.6-4.1

Ecosystem specific

{
    "binaries": [
        {
            "libqt4-sql-mysql": "4.8.6-4.1",
            "qt4-x11-tools": "4.8.6-4.6",
            "libqt4": "4.8.6-4.2",
            "libqt4-x11-32bit": "4.8.6-4.2",
            "libqt4-qt3support-32bit": "4.8.6-4.2",
            "libqt4-sql-32bit": "4.8.6-4.2",
            "libqt4-qt3support": "4.8.6-4.2",
            "libqt4-x11": "4.8.6-4.2",
            "libqt4-sql": "4.8.6-4.2",
            "libqt4-sql-sqlite": "4.8.6-4.2",
            "libqt4-32bit": "4.8.6-4.2"
        }
    ]
}

SUSE:Linux Enterprise Workstation Extension 12 / libqt4

Package

Name
libqt4
Purl
purl:rpm/suse/libqt4&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.8.6-4.2

Ecosystem specific

{
    "binaries": [
        {
            "libqt4-sql-postgresql": "4.8.6-4.1",
            "libqt4-sql-unixODBC-32bit": "4.8.6-4.1",
            "libqt4-sql-mysql-32bit": "4.8.6-4.1",
            "libqt4-sql-postgresql-32bit": "4.8.6-4.1",
            "libqt4-sql-sqlite-32bit": "4.8.6-4.2",
            "libqt4-sql-unixODBC": "4.8.6-4.1"
        }
    ]
}

SUSE:Linux Enterprise Workstation Extension 12 / libqt4-sql-plugins

Package

Name
libqt4-sql-plugins
Purl
purl:rpm/suse/libqt4-sql-plugins&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.8.6-4.1

Ecosystem specific

{
    "binaries": [
        {
            "libqt4-sql-postgresql": "4.8.6-4.1",
            "libqt4-sql-unixODBC-32bit": "4.8.6-4.1",
            "libqt4-sql-mysql-32bit": "4.8.6-4.1",
            "libqt4-sql-postgresql-32bit": "4.8.6-4.1",
            "libqt4-sql-sqlite-32bit": "4.8.6-4.2",
            "libqt4-sql-unixODBC": "4.8.6-4.1"
        }
    ]
}