--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2019-b5e690b96e
2019-04-01 01:21:15.906307
--------------------------------------------------------------------------------
Name : qt
Product : Fedora 28
Version : 4.8.7
Release : 45.fc28
URL :
http://qt-project.org/
Summary : Qt toolkit
Description :
Qt is a software toolkit for developing applications.
This package contains base tools, like string, xml, and network
handling.
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2018-19872
--------------------------------------------------------------------------------
ChangeLog:
* Fri Mar 22 2019 Than Ngo <than(a)redhat.com> - 4.8.7-45
- fixed #1691638 - CVE-2018-19872 qt: malformed PPM image causing division by zero and
crash in qppmhandler.cpp
* Fri Oct 19 2018 Kevin Kofler <Kevin(a)tigcc.ticalc.org> - 1:4.8.7-44
- fix QAudio hardcoding hw:0,0 on ALSA1.1 (patch by Jaroslav ��karvada, #1641151)
- disable OpenSSL 1.1 patch for F27, keep building against compat-openssl10
(It really does not make sense to switch over the F27 package at this point.)
* Fri Sep 21 2018 Owen Taylor <otaylor(a)redhat.com> - 1:4.8.7-43
- Disable qtchooser for Flatpak builds
* Sat Jul 21 2018 Rex Dieter <rdieter(a)fedoraproject.org> - 1:4.8.7-42
- drop BR: pkgconfig(NetworkManager) (#1606047)
- use %make_build %ldconfig
* Sat Jul 14 2018 Fedora Release Engineering <releng(a)fedoraproject.org> -
1:4.8.7-41
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Sat May 19 2018 Rex Dieter <rdieter(a)fedoraproject.org> - 1:4.8.7-40
- build only qtscript using -O1 (#1580047)
* Sat May 19 2018 Rex Dieter <rdieter(a)fedoraproject.org> - 1:4.8.7-39
- workaround qtscript/gcc8 bug (#1580047)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1691636 - CVE-2018-19872 qt: malformed PPM image causing division by zero and
crash in qppmhandler.cpp
https://bugzilla.redhat.com/show_bug.cgi?id=1691636
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2019-b5e690b96e' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------