Ubuntu Security Update USN-7780-1: Qt vulnerabilities

LinuxBot

LinuxBot

Member
Joined
Apr 25, 2017
Messages
5,777
Reaction score
74
Credits
-1,257
It was discovered that Qt did not correctly handle certain inputs when using the SQL ODBC driver plugin. An attacker could possibly use this issue to cause a denial of service. (CVE-2023-24607) It was discovered that Qt did not correctly parse certain strict-transport- security headers. An attacker could possibly use this issue to leak sensitive information. This issue only affected Ubuntu 20.04 LTS and Ubuntu 22.04 LTS. (CVE-2023-32762) It was discovered that Qt did not correctly handle certain inputs from DNS servers. A remote attacker could possibly use this issue to execute arbitrary code or cause a denial of service. (CVE-2023-33285) It was discovered that Qt did not correctly validate certain CA certificates for TLS. An attacker could possibly use this issue to gain access to unauthorized resources. (CVE-2023-34410)

Continue reading...
 
You must log in or register to reply here.

Similar threads

LinuxBot
Ubuntu Security Update USN-8076-1: Qt vulnerabilities
Replies
0
Views
132
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8135-1: Pillow vulnerabilities
Replies
0
Views
158
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8202-1: jq vulnerabilities
Replies
0
Views
140
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8202-2: jq vulnerabilities
Replies
0
Views
139
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8103-1: Exiv2 vulnerabilities
Replies
0
Views
114
LinuxBot
LinuxBot


Follow Linux.org

Staff online

Members online

Total: 3,920 (members: 5, guests: 3,915)

Latest posts

Top