Overview

File _patchinfo of Package patchinfo.10671

<patchinfo incident="10671">

  <issue tracker="bnc" id="1130246">VUL-1: CVE-2018-19872: libqt5-qtbase: An issue was discovered in Qt 5.11. A malformed PPM image causes a division by zero and a crash in qppmhandler.cpp</issue>
  <issue tracker="bnc" id="1108889">SLES-12-SP4-RC1.Build0393remote ssh -X install ssh=1 crash with[BUG] Segmentation fault at 0x0000000000008f</issue>
  <issue tracker="bnc" id="1129662">kate save as doesn't initially show file's location if remote</issue>
  <issue tracker="bnc" id="1118597">VUL-1: CVE-2018-19870: libqt5-qtbase: Check for QImage allocation failure in qgifhandler</issue>
  <issue tracker="cve" id="2018-19872"/>
  <issue tracker="cve" id="2018-19870"/>
  <category>security</category>
  <rating>moderate</rating>
  <packager>favogt</packager>
  <description>This update for libqt5-qtbase fixes the following issues:

Security issues fixed:	  

- CVE-2018-19872: Fixed an issue which could allow a division by zero leading to crash (bsc#1130246).
- CVE-2018-19870: Fixed an improper check in QImage allocation which could allow Denial of Service 
  when opening crafted gif files (bsc#1118597).
  
Other issue addressed:   

- Fixed an issue which showing remote locations was not allowed (bsc#1129662).
</description>
  <summary>Security update for libqt5-qtbase</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places