-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-4556-1 security@xxxxxxxxxx https://www.debian.org/security/ Moritz Muehlenhoff October 31, 2019 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : qtbase-opensource-src CVE ID : CVE-2019-18281 An out-of-bounds memory access was discovered in the Qt library, which could result in denial of service through a text file containing many directional characters. The oldstable distribution (stretch) is not affected. For the stable distribution (buster), this problem has been fixed in version 5.11.3+dfsg1-1+deb10u1. We recommend that you upgrade your qtbase-opensource-src packages. For the detailed security status of qtbase-opensource-src please refer to its security tracker page at: https://security-tracker.debian.org/tracker/qtbase-opensource-src Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: debian-security-announce@xxxxxxxxxxxxxxxx -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAl27VK8ACgkQEMKTtsN8 TjaIpg/8Cj2cde+soRVmPgYjFl29BH2bWl0lxscDYUbCY2/UsX+L88mk/lJT9NAa E8hoW58V9BYdc5K6I6PBOOjL7GY1QhgC+gsMq9zZNu5a/yS4TL/LpuYs1Z5O54zM kQOEchdWZWJzf8jmPJO8FBuoYrach2oAjztzEYAwATJEBccJmcEPv26SBxxzaGRg jKQL3K33FLPTnk/9vXZnh0dUO4TzcjRCPyK+MUSYSy1RIrJLvR4lx67e2Ug5AvEW SeqeAvNq0PfOKDcYNLGaXlJu3cZBwbtif+xvtlew4ELlSXieftsk2epY5wB4VqWe q/JrGtI3RLas9Dy8qywzu2UELC0+DbugODz+WBnwAQTL4PrpUYwUOuk42OL/m//N sPrac4CRBQV8KSYpxrgGOm9dIqG4GwRn8SAupmheBRGDdrbtxA1b1eqjLoXoWPcD 93agullv7+0/Xr0H4LluJ8/tWeHDoe3l5yfY8GaEgwgC2vCcwhiKxXTfhjjMll/E PItk6jxwa8MBimvI6rAfK+MOEyMfkI+TbRogvRUTgUn2hA2s3GRrC1NNS1KUguxj u+rOmCgqzHYkAFC4vNWhgNTkXBRMp/WvZeS5BjMRv27XR51VjBhjMEEvY29opicm KUiUPe01psdIUfFt5Lhq4S6wDpUxvyQks3RA0v6lSm4t6CSOl7k= =2ZKP -----END PGP SIGNATURE-----