Security update for libqt5-qtbase
This update for libqt5-qtbase provides the following fixes:
Security issues fixed:
- CVE-2018-15518: Fixed double free in QXmlStreamReader (bsc#1118595)
- CVE-2018-19873: Fixed Denial of Service on malformed BMP file in QBmpHandler (bsc#1118596)
Non-security issues fixed:
- Fix dynamic loading of libGL. (bsc#1099874)
- Make sure printer settings are properly remembered. (bsc#1096328)
- Add patch to fix fails to load pixmap cursors on XRender less system (bsc#1108889)
- Fix krita pop-up palette not working properly (bsc#1120639)
This update was imported from the SUSE:SLE-15:Update update project.
-
Submitted by
Fabian Vogt (favogt)
Fixed bugs
bnc#1099874
Eric5 does not work in Leap 15.0
bnc#1096328
printer settings not remembered
bnc#1108889
[SLES-12-SP4-RC1.Build0393]remote ssh -X install ssh=1 crash with[BUG] Segmentation fault at 0x0000000000008f
bnc#1118595
VUL-0: CVE-2018-15518: libqt5-qtbase: "double free or corruption" in QXmlStreamReader
bnc#1118596
VUL-1: CVE-2018-19873: libqt5-qtbase: QBmpHandler segfault on malformed BMP file
bnc#1120639
krita: pop-up palette not working properly
