ALT-BU-2015-2703-2
Branch sisyphus update bulletin.
Closed vulnerabilities
Modified: 2024-11-21
CVE-2015-1290
The Google V8 engine, as used in Google Chrome before 44.0.2403.89 and QtWebEngineCore in Qt before 5.5.1, allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a crafted web site.
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- openSUSE-SU-2015:2368
- openSUSE-SU-2015:2368
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://codereview.chromium.org/1233453004
- https://codereview.chromium.org/1233453004
Modified: 2024-11-21
CVE-2017-15011
The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.
Package qt5-xmlpatterns updated to version 5.5.1-alt1 for branch sisyphus in task 151899.
Closed vulnerabilities
Modified: 2024-11-21
CVE-2015-1290
The Google V8 engine, as used in Google Chrome before 44.0.2403.89 and QtWebEngineCore in Qt before 5.5.1, allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a crafted web site.
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- openSUSE-SU-2015:2368
- openSUSE-SU-2015:2368
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://codereview.chromium.org/1233453004
- https://codereview.chromium.org/1233453004
Modified: 2024-11-21
CVE-2017-15011
The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.
Package qt5-declarative updated to version 5.5.1-alt1 for branch sisyphus in task 151899.
Closed vulnerabilities
Modified: 2024-11-21
CVE-2015-1290
The Google V8 engine, as used in Google Chrome before 44.0.2403.89 and QtWebEngineCore in Qt before 5.5.1, allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a crafted web site.
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- openSUSE-SU-2015:2368
- openSUSE-SU-2015:2368
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://codereview.chromium.org/1233453004
- https://codereview.chromium.org/1233453004
Modified: 2024-11-21
CVE-2017-15011
The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.
Package qt5-websockets updated to version 5.5.1-alt1 for branch sisyphus in task 151899.
Closed vulnerabilities
Modified: 2024-11-21
CVE-2015-1290
The Google V8 engine, as used in Google Chrome before 44.0.2403.89 and QtWebEngineCore in Qt before 5.5.1, allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a crafted web site.
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- openSUSE-SU-2015:2368
- openSUSE-SU-2015:2368
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://codereview.chromium.org/1233453004
- https://codereview.chromium.org/1233453004
Modified: 2024-11-21
CVE-2017-15011
The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.
Package qt5-multimedia updated to version 5.5.1-alt1 for branch sisyphus in task 151899.
Closed vulnerabilities
Modified: 2024-11-21
CVE-2015-1290
The Google V8 engine, as used in Google Chrome before 44.0.2403.89 and QtWebEngineCore in Qt before 5.5.1, allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a crafted web site.
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- openSUSE-SU-2015:2368
- openSUSE-SU-2015:2368
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://codereview.chromium.org/1233453004
- https://codereview.chromium.org/1233453004
Modified: 2024-11-21
CVE-2017-15011
The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.
Package qt5-location updated to version 5.5.1-alt1 for branch sisyphus in task 151899.
Closed vulnerabilities
Modified: 2024-11-21
CVE-2015-1290
The Google V8 engine, as used in Google Chrome before 44.0.2403.89 and QtWebEngineCore in Qt before 5.5.1, allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a crafted web site.
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- openSUSE-SU-2015:2368
- openSUSE-SU-2015:2368
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://codereview.chromium.org/1233453004
- https://codereview.chromium.org/1233453004
Modified: 2024-11-21
CVE-2017-15011
The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.
Package qt5-sensors updated to version 5.5.1-alt1 for branch sisyphus in task 151899.
Closed vulnerabilities
Modified: 2024-11-21
CVE-2015-1290
The Google V8 engine, as used in Google Chrome before 44.0.2403.89 and QtWebEngineCore in Qt before 5.5.1, allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a crafted web site.
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- openSUSE-SU-2015:2368
- openSUSE-SU-2015:2368
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://codereview.chromium.org/1233453004
- https://codereview.chromium.org/1233453004
Modified: 2024-11-21
CVE-2017-15011
The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.
Closed vulnerabilities
Modified: 2024-11-21
CVE-2015-1290
The Google V8 engine, as used in Google Chrome before 44.0.2403.89 and QtWebEngineCore in Qt before 5.5.1, allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a crafted web site.
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- openSUSE-SU-2015:2368
- openSUSE-SU-2015:2368
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://codereview.chromium.org/1233453004
- https://codereview.chromium.org/1233453004
Modified: 2024-11-21
CVE-2017-15011
The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.
Package qt5-script updated to version 5.5.1-alt1 for branch sisyphus in task 151899.
Closed vulnerabilities
Modified: 2024-11-21
CVE-2015-1290
The Google V8 engine, as used in Google Chrome before 44.0.2403.89 and QtWebEngineCore in Qt before 5.5.1, allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a crafted web site.
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- openSUSE-SU-2015:2368
- openSUSE-SU-2015:2368
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://codereview.chromium.org/1233453004
- https://codereview.chromium.org/1233453004
Modified: 2024-11-21
CVE-2017-15011
The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.
Package qt5-quick1 updated to version 5.5.1-alt1 for branch sisyphus in task 151899.
Closed vulnerabilities
Modified: 2024-11-21
CVE-2015-1290
The Google V8 engine, as used in Google Chrome before 44.0.2403.89 and QtWebEngineCore in Qt before 5.5.1, allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a crafted web site.
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- openSUSE-SU-2015:2368
- openSUSE-SU-2015:2368
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://codereview.chromium.org/1233453004
- https://codereview.chromium.org/1233453004
Modified: 2024-11-21
CVE-2017-15011
The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.
Package qt5-x11extras updated to version 5.5.1-alt1 for branch sisyphus in task 151899.
Closed vulnerabilities
Modified: 2024-11-21
CVE-2015-1290
The Google V8 engine, as used in Google Chrome before 44.0.2403.89 and QtWebEngineCore in Qt before 5.5.1, allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a crafted web site.
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- openSUSE-SU-2015:2368
- openSUSE-SU-2015:2368
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://codereview.chromium.org/1233453004
- https://codereview.chromium.org/1233453004
Modified: 2024-11-21
CVE-2017-15011
The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.
Package qt5-imageformats updated to version 5.5.1-alt1 for branch sisyphus in task 151899.
Closed vulnerabilities
Modified: 2024-11-21
CVE-2015-1290
The Google V8 engine, as used in Google Chrome before 44.0.2403.89 and QtWebEngineCore in Qt before 5.5.1, allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a crafted web site.
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- openSUSE-SU-2015:2368
- openSUSE-SU-2015:2368
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://codereview.chromium.org/1233453004
- https://codereview.chromium.org/1233453004
Modified: 2024-11-21
CVE-2017-15011
The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.
Closed vulnerabilities
Modified: 2024-11-21
CVE-2015-1290
The Google V8 engine, as used in Google Chrome before 44.0.2403.89 and QtWebEngineCore in Qt before 5.5.1, allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a crafted web site.
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- openSUSE-SU-2015:2368
- openSUSE-SU-2015:2368
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://codereview.chromium.org/1233453004
- https://codereview.chromium.org/1233453004
Modified: 2024-11-21
CVE-2017-15011
The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.
Package qt5-quickcontrols updated to version 5.5.1-alt1 for branch sisyphus in task 151899.
Closed vulnerabilities
Modified: 2024-11-21
CVE-2015-1290
The Google V8 engine, as used in Google Chrome before 44.0.2403.89 and QtWebEngineCore in Qt before 5.5.1, allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a crafted web site.
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- openSUSE-SU-2015:2368
- openSUSE-SU-2015:2368
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://codereview.chromium.org/1233453004
- https://codereview.chromium.org/1233453004
Modified: 2024-11-21
CVE-2017-15011
The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.
Package qt5-connectivity updated to version 5.5.1-alt1 for branch sisyphus in task 151899.
Closed vulnerabilities
Modified: 2024-11-21
CVE-2015-1290
The Google V8 engine, as used in Google Chrome before 44.0.2403.89 and QtWebEngineCore in Qt before 5.5.1, allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a crafted web site.
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- openSUSE-SU-2015:2368
- openSUSE-SU-2015:2368
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://codereview.chromium.org/1233453004
- https://codereview.chromium.org/1233453004
Modified: 2024-11-21
CVE-2017-15011
The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.
Package qt5-serialport updated to version 5.5.1-alt1 for branch sisyphus in task 151899.
Closed vulnerabilities
Modified: 2024-11-21
CVE-2015-1290
The Google V8 engine, as used in Google Chrome before 44.0.2403.89 and QtWebEngineCore in Qt before 5.5.1, allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a crafted web site.
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- openSUSE-SU-2015:2368
- openSUSE-SU-2015:2368
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://codereview.chromium.org/1233453004
- https://codereview.chromium.org/1233453004
Modified: 2024-11-21
CVE-2017-15011
The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.
Package qt5-translations updated to version 5.5.1-alt1 for branch sisyphus in task 151899.
Closed vulnerabilities
Modified: 2024-11-21
CVE-2015-1290
The Google V8 engine, as used in Google Chrome before 44.0.2403.89 and QtWebEngineCore in Qt before 5.5.1, allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a crafted web site.
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- openSUSE-SU-2015:2368
- openSUSE-SU-2015:2368
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://codereview.chromium.org/1233453004
- https://codereview.chromium.org/1233453004
Modified: 2024-11-21
CVE-2017-15011
The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.
Package qt5-graphicaleffects updated to version 5.5.1-alt1 for branch sisyphus in task 151899.
Closed vulnerabilities
Modified: 2024-11-21
CVE-2015-1290
The Google V8 engine, as used in Google Chrome before 44.0.2403.89 and QtWebEngineCore in Qt before 5.5.1, allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a crafted web site.
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- openSUSE-SU-2015:2368
- openSUSE-SU-2015:2368
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://codereview.chromium.org/1233453004
- https://codereview.chromium.org/1233453004
Modified: 2024-11-21
CVE-2017-15011
The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.
Closed vulnerabilities
Modified: 2024-11-21
CVE-2015-1290
The Google V8 engine, as used in Google Chrome before 44.0.2403.89 and QtWebEngineCore in Qt before 5.5.1, allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a crafted web site.
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- openSUSE-SU-2015:2368
- openSUSE-SU-2015:2368
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://codereview.chromium.org/1233453004
- https://codereview.chromium.org/1233453004
Modified: 2024-11-21
CVE-2017-15011
The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.
Package qt5-wayland updated to version 5.5.1-alt1 for branch sisyphus in task 151899.
Closed vulnerabilities
Modified: 2024-11-21
CVE-2015-1290
The Google V8 engine, as used in Google Chrome before 44.0.2403.89 and QtWebEngineCore in Qt before 5.5.1, allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a crafted web site.
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
- openSUSE-SU-2015:2368
- openSUSE-SU-2015:2368
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://bugs.chromium.org/p/chromium/issues/detail?id=505374
- https://codereview.chromium.org/1233453004
- https://codereview.chromium.org/1233453004
Modified: 2024-11-21
CVE-2017-15011
The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.
Closed bugs
сегфолтится после исправления сборки gcc5
Closed vulnerabilities
Modified: 2024-11-21
CVE-2015-5186
Audit before 2.4.4 in Linux does not sanitize escape characters in filenames.
- [oss-security] 20150813 Audit: log terminal emulator escape sequences handling CVE-2015-5186
- [oss-security] 20150813 Audit: log terminal emulator escape sequences handling CVE-2015-5186
- 76840
- 76840
- https://bugzilla.redhat.com/show_bug.cgi?id=1251621
- https://bugzilla.redhat.com/show_bug.cgi?id=1251621
- https://people.redhat.com/sgrubb/audit/ChangeLog
- https://people.redhat.com/sgrubb/audit/ChangeLog