-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2019-b5e690b96e 2019-04-01 01:21:15.906307 --------------------------------------------------------------------------------
Name : qt Product : Fedora 28 Version : 4.8.7 Release : 45.fc28 URL : http://qt-project.org/ Summary : Qt toolkit Description : Qt is a software toolkit for developing applications.
This package contains base tools, like string, xml, and network handling.
-------------------------------------------------------------------------------- Update Information:
Security fix for CVE-2018-19872 -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 22 2019 Than Ngo than@redhat.com - 4.8.7-45 - fixed #1691638 - CVE-2018-19872 qt: malformed PPM image causing division by zero and crash in qppmhandler.cpp * Fri Oct 19 2018 Kevin Kofler Kevin@tigcc.ticalc.org - 1:4.8.7-44 - fix QAudio hardcoding hw:0,0 on ALSA1.1 (patch by Jaroslav ��karvada, #1641151) - disable OpenSSL 1.1 patch for F27, keep building against compat-openssl10 (It really does not make sense to switch over the F27 package at this point.) * Fri Sep 21 2018 Owen Taylor otaylor@redhat.com - 1:4.8.7-43 - Disable qtchooser for Flatpak builds * Sat Jul 21 2018 Rex Dieter rdieter@fedoraproject.org - 1:4.8.7-42 - drop BR: pkgconfig(NetworkManager) (#1606047) - use %make_build %ldconfig * Sat Jul 14 2018 Fedora Release Engineering releng@fedoraproject.org - 1:4.8.7-41 - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild * Sat May 19 2018 Rex Dieter rdieter@fedoraproject.org - 1:4.8.7-40 - build only qtscript using -O1 (#1580047) * Sat May 19 2018 Rex Dieter rdieter@fedoraproject.org - 1:4.8.7-39 - workaround qtscript/gcc8 bug (#1580047) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1691636 - CVE-2018-19872 qt: malformed PPM image causing division by zero and crash in qppmhandler.cpp https://bugzilla.redhat.com/show_bug.cgi?id=1691636 --------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2019-b5e690b96e' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------