ELSA-2023-6967

ULN >
Oracle Linux Errata repository >
ELSA-2023-6967

ELSA-2023-6967 - qt5-qtbase security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2023-11-17

Description

[5.15.3-5]
- Fix infinite loops in QXmlStreamReader (CVE-2023-38197)
Resolves: bz#2222770

[5.15.3-4]
- Don't allow remote attacker to bypass security restrictions caused by
flaw in certificate validation (CVE-2023-34410) (version #2)
Resolves: bz#2212753

[5.15.3-3]
- Don't allow remote attacker to bypass security restrictions caused by
flaw in certificate validation (CVE-2023-34410)
Resolves: bz#2212753

[5.15.3-2]
- Fix specific overflow in qtextlayout
- Fix incorrect parsing of the strict-transport-security (HSTS) header
- Fix buffer over-read via a crafted reply from a DNS server
Resolves: bz#2209491

Related CVEs

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	qt5-qtbase-5.15.3-5.el8.src.rpm	2f2ae3812841868fa899f643e582e691b603b991b9c688ca13626cea27d7e651	-	ol8_aarch64_appstream
	qt5-qtbase-5.15.3-5.el8.src.rpm	2f2ae3812841868fa899f643e582e691b603b991b9c688ca13626cea27d7e651	-	ol8_aarch64_codeready_builder
	qt5-qtbase-5.15.3-5.el8.aarch64.rpm	db3b705bda3ce3bcd93c62b9add727dadd11e442afa6f57c88c3991368e361c7	-	ol8_aarch64_appstream
	qt5-qtbase-common-5.15.3-5.el8.noarch.rpm	74eaf1ade24c9c29eb46831f7b294c8fff6de5dff063628b2daf6571e40c349d	-	ol8_aarch64_appstream
	qt5-qtbase-devel-5.15.3-5.el8.aarch64.rpm	51c259ff3f5b089f108be8a7ca5d8b1564d6a79b5451b3539798eb6c489e3cfc	-	ol8_aarch64_appstream
	qt5-qtbase-examples-5.15.3-5.el8.aarch64.rpm	a9754bd9951420c7ef63d177a0ce8e0dc77f8f8e92913b0b0b42e5178177ba0b	-	ol8_aarch64_appstream
	qt5-qtbase-gui-5.15.3-5.el8.aarch64.rpm	bf8f432c4aeb033ad8cd93ffbaf15915849605283e3dcb2132d4af1a39247cbd	-	ol8_aarch64_appstream
	qt5-qtbase-mysql-5.15.3-5.el8.aarch64.rpm	41d8e1b39dc9deba62022fe63937cc599847ffbc19d58d58a5977a24c9781a3d	-	ol8_aarch64_appstream
	qt5-qtbase-odbc-5.15.3-5.el8.aarch64.rpm	04ecb0196fbda8650cc37984f72f69aeec5bbf39784c2409f431a135f466df8c	-	ol8_aarch64_appstream
	qt5-qtbase-postgresql-5.15.3-5.el8.aarch64.rpm	88333c7032a8ebed9e6037366b93055aa1a9f899ce523a2208766d44e5040853	-	ol8_aarch64_appstream
	qt5-qtbase-private-devel-5.15.3-5.el8.aarch64.rpm	1e4260a3e64981fe651eab3ca8953b16936150c435dc88b2ab1b914dd19da417	-	ol8_aarch64_appstream
	qt5-qtbase-static-5.15.3-5.el8.aarch64.rpm	e1e44b00297cfd45c3aea81898f9afd3048915301ea3e987c27c9ee6fd3fe9c0	-	ol8_aarch64_codeready_builder

Oracle Linux 8 (x86_64)	qt5-qtbase-5.15.3-5.el8.src.rpm	2f2ae3812841868fa899f643e582e691b603b991b9c688ca13626cea27d7e651	-	ol8_x86_64_appstream
	qt5-qtbase-5.15.3-5.el8.src.rpm	2f2ae3812841868fa899f643e582e691b603b991b9c688ca13626cea27d7e651	-	ol8_x86_64_codeready_builder
	qt5-qtbase-5.15.3-5.el8.i686.rpm	5fc672d54b8d92f5df3b5c09b25a3d168b1ba58bd610c907d2ea9be33a51c93a	-	ol8_x86_64_appstream
	qt5-qtbase-5.15.3-5.el8.x86_64.rpm	281f8948980febe3ddceaa3b6959501ef5ceac3bfacf2fc65432516932803cac	-	ol8_x86_64_appstream
	qt5-qtbase-common-5.15.3-5.el8.noarch.rpm	74eaf1ade24c9c29eb46831f7b294c8fff6de5dff063628b2daf6571e40c349d	-	ol8_x86_64_appstream
	qt5-qtbase-devel-5.15.3-5.el8.i686.rpm	3f35c1506808c51e179fcd70eb4326deeaed988853535598332334996cf0fc70	-	ol8_x86_64_appstream
	qt5-qtbase-devel-5.15.3-5.el8.x86_64.rpm	e3013518372ceeea5ce045c33b82f153001240a76d23d33e22a2194c25bd2e21	-	ol8_x86_64_appstream
	qt5-qtbase-examples-5.15.3-5.el8.i686.rpm	1d24c72b70e78f429ded8f042ba637ad8b7e225ce11d720dfe317d6a5d55eec7	-	ol8_x86_64_appstream
	qt5-qtbase-examples-5.15.3-5.el8.x86_64.rpm	38bd1c78dbd99ee49475584f4dd353400900f462a32b83afde97223de8e73e4a	-	ol8_x86_64_appstream
	qt5-qtbase-gui-5.15.3-5.el8.i686.rpm	5776281b26976f5644908cd5ddd8b5336f43003136ff0b626acf7b3c1dbc7e4f	-	ol8_x86_64_appstream
	qt5-qtbase-gui-5.15.3-5.el8.x86_64.rpm	6d1a69469271095c3ced0b31786acd73050c9f7f2ff23df527e69f6929f89a8b	-	ol8_x86_64_appstream
	qt5-qtbase-mysql-5.15.3-5.el8.i686.rpm	38d59ae5f04798423d03893d5593b8397f8ad363f3d766b976567d6048317644	-	ol8_x86_64_appstream
	qt5-qtbase-mysql-5.15.3-5.el8.x86_64.rpm	a53cb74edcdb210ade0c1cdb3a25373ba849e648f8e8270e9e9e2236894fad9a	-	ol8_x86_64_appstream
	qt5-qtbase-odbc-5.15.3-5.el8.i686.rpm	97f70263de7abfb17b4abe0ee29436664c1a67ef37b7940c8b24d5bc1c4726ed	-	ol8_x86_64_appstream
	qt5-qtbase-odbc-5.15.3-5.el8.x86_64.rpm	2b7cfcb3a95416ee92734a0cdb66bea43875b72050df47f4d9bd6c602b573389	-	ol8_x86_64_appstream
	qt5-qtbase-postgresql-5.15.3-5.el8.i686.rpm	0da02c76c842ca21e9de7418bb9a28ff66cbd2e0227fd657ee4b187be9826c58	-	ol8_x86_64_appstream
	qt5-qtbase-postgresql-5.15.3-5.el8.x86_64.rpm	2dd45ea34c0173144e05cfa7c9d235c5bf26743f8a943dddb9e073f323a9a118	-	ol8_x86_64_appstream
	qt5-qtbase-private-devel-5.15.3-5.el8.i686.rpm	b4f2d80fc9ac8cd0eb54fdb10227105b1608c21646069cb2dce74f684a4ee03f	-	ol8_x86_64_appstream
	qt5-qtbase-private-devel-5.15.3-5.el8.x86_64.rpm	0922a5c3f283522029f51331a95ee346c1240e476d77cfe2a7bb1be10242e32d	-	ol8_x86_64_appstream
	qt5-qtbase-static-5.15.3-5.el8.i686.rpm	e1aa13f279f578a2f9104725fed6df413abb84f7a05a2cbc489a6487e9471b60	-	ol8_x86_64_codeready_builder
	qt5-qtbase-static-5.15.3-5.el8.x86_64.rpm	a9cca8f54ba7ec97a60f3e51b72c852da56c78f72191500df344237cd54ae166	-	ol8_x86_64_codeready_builder

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691