ELA-263-1 qtbase-opensource-src security update

buffer overread vulnerability

2020-08-21
Packageqtbase-opensource-src
Version5.3.2+dfsg-4+deb8u5
Related CVEs CVE-2020-17507

A vulnerability was discovered in qtbase-opensource-src, the cross-platform C++ application framework. A specially-crafted XBM image file could have caused a buffer overread.

For Debian 8 Jessie, these problems have been fixed in version 5.3.2+dfsg-4+deb8u5.

We recommend that you upgrade your qtbase-opensource-src packages.

Further information about Extended LTS security advisories can be found at: https://deb.freexian.com/extended-lts/