ELSA-2023-6967

ELSA-2023-6967 - qt5-qtbase security update

Type:SECURITY
Impact:MODERATE
Release Date:2023-11-17

Description


[5.15.3-5]
- Fix infinite loops in QXmlStreamReader (CVE-2023-38197)
Resolves: bz#2222770

[5.15.3-4]
- Don't allow remote attacker to bypass security restrictions caused by
flaw in certificate validation (CVE-2023-34410) (version #2)
Resolves: bz#2212753

[5.15.3-3]
- Don't allow remote attacker to bypass security restrictions caused by
flaw in certificate validation (CVE-2023-34410)
Resolves: bz#2212753

[5.15.3-2]
- Fix specific overflow in qtextlayout
- Fix incorrect parsing of the strict-transport-security (HSTS) header
- Fix buffer over-read via a crafted reply from a DNS server
Resolves: bz#2209491


Related CVEs


CVE-2023-34410
CVE-2023-33285
CVE-2023-37369
CVE-2023-38197

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 8 (aarch64) qt5-qtbase-5.15.3-5.el8.src.rpm2f2ae3812841868fa899f643e582e691b603b991b9c688ca13626cea27d7e651-ol8_aarch64_appstream
qt5-qtbase-5.15.3-5.el8.src.rpm2f2ae3812841868fa899f643e582e691b603b991b9c688ca13626cea27d7e651-ol8_aarch64_codeready_builder
qt5-qtbase-5.15.3-5.el8.aarch64.rpmdb3b705bda3ce3bcd93c62b9add727dadd11e442afa6f57c88c3991368e361c7-ol8_aarch64_appstream
qt5-qtbase-common-5.15.3-5.el8.noarch.rpm74eaf1ade24c9c29eb46831f7b294c8fff6de5dff063628b2daf6571e40c349d-ol8_aarch64_appstream
qt5-qtbase-devel-5.15.3-5.el8.aarch64.rpm51c259ff3f5b089f108be8a7ca5d8b1564d6a79b5451b3539798eb6c489e3cfc-ol8_aarch64_appstream
qt5-qtbase-examples-5.15.3-5.el8.aarch64.rpma9754bd9951420c7ef63d177a0ce8e0dc77f8f8e92913b0b0b42e5178177ba0b-ol8_aarch64_appstream
qt5-qtbase-gui-5.15.3-5.el8.aarch64.rpmbf8f432c4aeb033ad8cd93ffbaf15915849605283e3dcb2132d4af1a39247cbd-ol8_aarch64_appstream
qt5-qtbase-mysql-5.15.3-5.el8.aarch64.rpm41d8e1b39dc9deba62022fe63937cc599847ffbc19d58d58a5977a24c9781a3d-ol8_aarch64_appstream
qt5-qtbase-odbc-5.15.3-5.el8.aarch64.rpm04ecb0196fbda8650cc37984f72f69aeec5bbf39784c2409f431a135f466df8c-ol8_aarch64_appstream
qt5-qtbase-postgresql-5.15.3-5.el8.aarch64.rpm88333c7032a8ebed9e6037366b93055aa1a9f899ce523a2208766d44e5040853-ol8_aarch64_appstream
qt5-qtbase-private-devel-5.15.3-5.el8.aarch64.rpm1e4260a3e64981fe651eab3ca8953b16936150c435dc88b2ab1b914dd19da417-ol8_aarch64_appstream
qt5-qtbase-static-5.15.3-5.el8.aarch64.rpme1e44b00297cfd45c3aea81898f9afd3048915301ea3e987c27c9ee6fd3fe9c0-ol8_aarch64_codeready_builder
Oracle Linux 8 (x86_64) qt5-qtbase-5.15.3-5.el8.src.rpm2f2ae3812841868fa899f643e582e691b603b991b9c688ca13626cea27d7e651-ol8_x86_64_appstream
qt5-qtbase-5.15.3-5.el8.src.rpm2f2ae3812841868fa899f643e582e691b603b991b9c688ca13626cea27d7e651-ol8_x86_64_codeready_builder
qt5-qtbase-5.15.3-5.el8.i686.rpm5fc672d54b8d92f5df3b5c09b25a3d168b1ba58bd610c907d2ea9be33a51c93a-ol8_x86_64_appstream
qt5-qtbase-5.15.3-5.el8.x86_64.rpm281f8948980febe3ddceaa3b6959501ef5ceac3bfacf2fc65432516932803cac-ol8_x86_64_appstream
qt5-qtbase-common-5.15.3-5.el8.noarch.rpm74eaf1ade24c9c29eb46831f7b294c8fff6de5dff063628b2daf6571e40c349d-ol8_x86_64_appstream
qt5-qtbase-devel-5.15.3-5.el8.i686.rpm3f35c1506808c51e179fcd70eb4326deeaed988853535598332334996cf0fc70-ol8_x86_64_appstream
qt5-qtbase-devel-5.15.3-5.el8.x86_64.rpme3013518372ceeea5ce045c33b82f153001240a76d23d33e22a2194c25bd2e21-ol8_x86_64_appstream
qt5-qtbase-examples-5.15.3-5.el8.i686.rpm1d24c72b70e78f429ded8f042ba637ad8b7e225ce11d720dfe317d6a5d55eec7-ol8_x86_64_appstream
qt5-qtbase-examples-5.15.3-5.el8.x86_64.rpm38bd1c78dbd99ee49475584f4dd353400900f462a32b83afde97223de8e73e4a-ol8_x86_64_appstream
qt5-qtbase-gui-5.15.3-5.el8.i686.rpm5776281b26976f5644908cd5ddd8b5336f43003136ff0b626acf7b3c1dbc7e4f-ol8_x86_64_appstream
qt5-qtbase-gui-5.15.3-5.el8.x86_64.rpm6d1a69469271095c3ced0b31786acd73050c9f7f2ff23df527e69f6929f89a8b-ol8_x86_64_appstream
qt5-qtbase-mysql-5.15.3-5.el8.i686.rpm38d59ae5f04798423d03893d5593b8397f8ad363f3d766b976567d6048317644-ol8_x86_64_appstream
qt5-qtbase-mysql-5.15.3-5.el8.x86_64.rpma53cb74edcdb210ade0c1cdb3a25373ba849e648f8e8270e9e9e2236894fad9a-ol8_x86_64_appstream
qt5-qtbase-odbc-5.15.3-5.el8.i686.rpm97f70263de7abfb17b4abe0ee29436664c1a67ef37b7940c8b24d5bc1c4726ed-ol8_x86_64_appstream
qt5-qtbase-odbc-5.15.3-5.el8.x86_64.rpm2b7cfcb3a95416ee92734a0cdb66bea43875b72050df47f4d9bd6c602b573389-ol8_x86_64_appstream
qt5-qtbase-postgresql-5.15.3-5.el8.i686.rpm0da02c76c842ca21e9de7418bb9a28ff66cbd2e0227fd657ee4b187be9826c58-ol8_x86_64_appstream
qt5-qtbase-postgresql-5.15.3-5.el8.x86_64.rpm2dd45ea34c0173144e05cfa7c9d235c5bf26743f8a943dddb9e073f323a9a118-ol8_x86_64_appstream
qt5-qtbase-private-devel-5.15.3-5.el8.i686.rpmb4f2d80fc9ac8cd0eb54fdb10227105b1608c21646069cb2dce74f684a4ee03f-ol8_x86_64_appstream
qt5-qtbase-private-devel-5.15.3-5.el8.x86_64.rpm0922a5c3f283522029f51331a95ee346c1240e476d77cfe2a7bb1be10242e32d-ol8_x86_64_appstream
qt5-qtbase-static-5.15.3-5.el8.i686.rpme1aa13f279f578a2f9104725fed6df413abb84f7a05a2cbc489a6487e9471b60-ol8_x86_64_codeready_builder
qt5-qtbase-static-5.15.3-5.el8.x86_64.rpma9cca8f54ba7ec97a60f3e51b72c852da56c78f72191500df344237cd54ae166-ol8_x86_64_codeready_builder



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete