|
Family: Debian Local Security Checks --> Category: infos
[DSA542] DSA-542-1 qt Vulnerability Scan
Vulnerability Scan Summary DSA-542-1 qt
Detailed Explanation for this Vulnerability Test
Several vulnerabilities were discovered in recent versions of Qt, a
commonly used graphic widget set, used in KDE for example. The first
problem allows a possible hacker to execute arbitrary code, while the other
two only seem to pose a denial of service danger. The Common
Vulnerabilities and Exposures project identifies the following
vulnerabilities:
Chris Evans has discovered a heap-based overflow when handling
8-bit RLE encoded BMP files.
Marcus Meissner has discovered a crash condition in the XPM
handling code, which is not yet fixed in Qt 3.3.
Marcus Meissner has discovered a crash condition in the GIF
handling code, which is not yet fixed in Qt 3.3.
For the stable distribution (woody) these problems have been fixed in
version 3.0.3-20020329-1woody2.
For the unstable distribution (sid) these problems have been fixed in
version 3.3.3-4 of qt-x11-free.
We recommend that you upgrade your qt packages.
Solution : http://www.debian.org/security/2004/dsa-542
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|