Publishing details

Published on 2022-01-19
Copied from ubuntu bionic in PPA for Ubuntu Security Proposed by Marc Deslauriers

Changelog

qtsvg-opensource-src (5.9.5-0ubuntu1.1) bionic-security; urgency=medium

  * SECURITY UPDATE: segfault via malformed image
    - debian/patches/CVE-2018-19869.patch: fix crash when parsing malformed
      url reference in src/svg/qsvghandler.cpp,
      tests/auto/qsvgrenderer/tst_qsvgrenderer.cpp.
    - CVE-2018-19869
  * SECURITY UPDATE: Out of bounds read
    - debian/patches/CVE-2021-3481-pre1.patch: improve handling of
      malformed numeric values in svg files in src/svg/qsvghandler.cpp.
    - debian/patches/CVE-2021-3481.patch: clamp parsed doubles to float
      representable values in src/svg/qsvghandler.cpp.
    - CVE-2021-3481
  * SECURITY UPDATE: Out of bounds write
    - debian/patches/CVE-2021-45930.patch: do stricter error checking when
      parsing path nodes in src/svg/qsvghandler.cpp.
    - CVE-2021-45930

 -- Marc Deslauriers <email address hidden>  Thu, 13 Jan 2022 10:25:08 -0500

Available diffs

diff from 5.9.5-0ubuntu1 (in ~ci-train-ppa-service/ubuntu/3237-deletedppa) to 5.9.5-0ubuntu1.1 (4.0 KiB)

Builds

Built packages

libqt5svg5 Qt 5 SVG module

libqt5svg5-dbgsym debug symbols for libqt5svg5

libqt5svg5-dev Qt 5 SVG module development files

qtsvg5-doc Qt 5 SVG documentation

qtsvg5-doc-html Qt 5 SVG HTML documentation

qtsvg5-examples Qt 5 SVG examples

qtsvg5-examples-dbgsym debug symbols for qtsvg5-examples

Package files

libqt5svg5-dbgsym_5.9.5-0ubuntu1.1_amd64.ddeb (3.5 MiB)
libqt5svg5-dbgsym_5.9.5-0ubuntu1.1_arm64.ddeb (3.2 MiB)
libqt5svg5-dbgsym_5.9.5-0ubuntu1.1_armhf.ddeb (3.6 MiB)
libqt5svg5-dbgsym_5.9.5-0ubuntu1.1_i386.ddeb (3.2 MiB)
libqt5svg5-dbgsym_5.9.5-0ubuntu1.1_ppc64el.ddeb (3.6 MiB)
libqt5svg5-dbgsym_5.9.5-0ubuntu1.1_s390x.ddeb (3.7 MiB)
libqt5svg5-dev_5.9.5-0ubuntu1.1_amd64.deb (9.7 KiB)
libqt5svg5-dev_5.9.5-0ubuntu1.1_arm64.deb (9.6 KiB)
libqt5svg5-dev_5.9.5-0ubuntu1.1_armhf.deb (9.6 KiB)
libqt5svg5-dev_5.9.5-0ubuntu1.1_i386.deb (9.6 KiB)
libqt5svg5-dev_5.9.5-0ubuntu1.1_ppc64el.deb (9.6 KiB)
libqt5svg5-dev_5.9.5-0ubuntu1.1_s390x.deb (9.6 KiB)
libqt5svg5_5.9.5-0ubuntu1.1_amd64.deb (126.1 KiB)
libqt5svg5_5.9.5-0ubuntu1.1_arm64.deb (106.7 KiB)
libqt5svg5_5.9.5-0ubuntu1.1_armhf.deb (107.9 KiB)
libqt5svg5_5.9.5-0ubuntu1.1_i386.deb (140.0 KiB)
libqt5svg5_5.9.5-0ubuntu1.1_ppc64el.deb (122.0 KiB)
libqt5svg5_5.9.5-0ubuntu1.1_s390x.deb (116.5 KiB)
qtsvg-opensource-src_5.9.5-0ubuntu1.1.debian.tar.xz (13.7 KiB)
qtsvg-opensource-src_5.9.5-0ubuntu1.1.dsc (2.8 KiB)
qtsvg-opensource-src_5.9.5.orig.tar.xz (1.7 MiB)
qtsvg5-doc-html_5.9.5-0ubuntu1.1_all.deb (130.6 KiB)
qtsvg5-doc_5.9.5-0ubuntu1.1_all.deb (208.5 KiB)
qtsvg5-examples-dbgsym_5.9.5-0ubuntu1.1_amd64.ddeb (6.4 MiB)
qtsvg5-examples-dbgsym_5.9.5-0ubuntu1.1_arm64.ddeb (5.9 MiB)
qtsvg5-examples-dbgsym_5.9.5-0ubuntu1.1_armhf.ddeb (6.0 MiB)
qtsvg5-examples-dbgsym_5.9.5-0ubuntu1.1_i386.ddeb (6.4 MiB)
qtsvg5-examples-dbgsym_5.9.5-0ubuntu1.1_ppc64el.ddeb (6.5 MiB)
qtsvg5-examples-dbgsym_5.9.5-0ubuntu1.1_s390x.ddeb (6.7 MiB)
qtsvg5-examples_5.9.5-0ubuntu1.1_amd64.deb (1.6 MiB)
qtsvg5-examples_5.9.5-0ubuntu1.1_arm64.deb (1.6 MiB)
qtsvg5-examples_5.9.5-0ubuntu1.1_armhf.deb (1.6 MiB)
qtsvg5-examples_5.9.5-0ubuntu1.1_i386.deb (1.6 MiB)
qtsvg5-examples_5.9.5-0ubuntu1.1_ppc64el.deb (1.6 MiB)
qtsvg5-examples_5.9.5-0ubuntu1.1_s390x.deb (1.6 MiB)