ALT Linux Team

Branch p9 update on 2019-10-20

2019-10-20

ALT-BU-2019-4024-1

Branch p9 update bulletin.

ALT-PU-2019-2997-1

Package qt5-base updated to version 5.12.5-alt1 for branch p9 in task 239407.

Closed vulnerabilities

Published: 2017-10-04
Modified: 2024-11-21

CVE-2017-15011

The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:

ALT-PU-2019-2998-1

Package qt5-declarative updated to version 5.12.5-alt1 for branch p9 in task 239407.

Closed vulnerabilities

Published: 2017-10-04
Modified: 2024-11-21

CVE-2017-15011

The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:

ALT-PU-2019-2999-1

Package qt5-xmlpatterns updated to version 5.12.5-alt1 for branch p9 in task 239407.

Closed vulnerabilities

Published: 2017-10-04
Modified: 2024-11-21

CVE-2017-15011

The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:

ALT-PU-2019-3000-1

Package qt5-tools updated to version 5.12.5-alt1 for branch p9 in task 239407.

Closed vulnerabilities

Published: 2017-10-04
Modified: 2024-11-21

CVE-2017-15011

The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:

ALT-PU-2019-3001-1

Package qt5-websockets updated to version 5.12.5-alt1 for branch p9 in task 239407.

Closed vulnerabilities

Published: 2017-10-04
Modified: 2024-11-21

CVE-2017-15011

The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:

ALT-PU-2019-3002-1

Package qt5-multimedia updated to version 5.12.5-alt1 for branch p9 in task 239407.

Closed vulnerabilities

Published: 2017-10-04
Modified: 2024-11-21

CVE-2017-15011

The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:

ALT-PU-2019-3003-1

Package qt5-serialport updated to version 5.12.5-alt1 for branch p9 in task 239407.

Closed vulnerabilities

Published: 2017-10-04
Modified: 2024-11-21

CVE-2017-15011

The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:

ALT-PU-2019-3004-1

Package qt5-location updated to version 5.12.5-alt1 for branch p9 in task 239407.

Closed vulnerabilities

Published: 2017-10-04
Modified: 2024-11-21

CVE-2017-15011

The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:

ALT-PU-2019-3005-1

Package qt5-sensors updated to version 5.12.5-alt1 for branch p9 in task 239407.

Closed vulnerabilities

Published: 2017-10-04
Modified: 2024-11-21

CVE-2017-15011

The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:

ALT-PU-2019-3006-1

Package qt5-webchannel updated to version 5.12.5-alt1 for branch p9 in task 239407.

Closed vulnerabilities

Published: 2017-10-04
Modified: 2024-11-21

CVE-2017-15011

The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:

ALT-PU-2019-3007-1

Package qt5-quickcontrols updated to version 5.12.5-alt1 for branch p9 in task 239407.

Closed vulnerabilities

Published: 2017-10-04
Modified: 2024-11-21

CVE-2017-15011

The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:

ALT-PU-2019-3008-1

Package qt5-script updated to version 5.12.5-alt1 for branch p9 in task 239407.

Closed vulnerabilities

Published: 2017-10-04
Modified: 2024-11-21

CVE-2017-15011

The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:

ALT-PU-2019-3009-1

Package qt5-x11extras updated to version 5.12.5-alt1 for branch p9 in task 239407.

Closed vulnerabilities

Published: 2017-10-04
Modified: 2024-11-21

CVE-2017-15011

The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:

ALT-PU-2019-3010-1

Package qt5-imageformats updated to version 5.12.5-alt1 for branch p9 in task 239407.

Closed vulnerabilities

Published: 2017-10-04
Modified: 2024-11-21

CVE-2017-15011

The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:

ALT-PU-2019-3011-1

Package qt5-svg updated to version 5.12.5-alt1 for branch p9 in task 239407.

Closed vulnerabilities

Published: 2017-10-04
Modified: 2024-11-21

CVE-2017-15011

The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:

ALT-PU-2019-3012-1

Package qt5-quickcontrols2 updated to version 5.12.5-alt1 for branch p9 in task 239407.

Closed vulnerabilities

Published: 2017-10-04
Modified: 2024-11-21

CVE-2017-15011

The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:

ALT-PU-2019-3013-1

Package qt5-connectivity updated to version 5.12.5-alt1 for branch p9 in task 239407.

Closed vulnerabilities

Published: 2017-10-04
Modified: 2024-11-21

CVE-2017-15011

The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:

ALT-PU-2019-3014-1

Package qt5-serialbus updated to version 5.12.5-alt1 for branch p9 in task 239407.

Closed vulnerabilities

Published: 2017-10-04
Modified: 2024-11-21

CVE-2017-15011

The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:

ALT-PU-2019-3015-1

Package qt5-translations updated to version 5.12.5-alt1 for branch p9 in task 239407.

Closed vulnerabilities

Published: 2017-10-04
Modified: 2024-11-21

CVE-2017-15011

The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:

ALT-PU-2019-3016-1

Package qt5-graphicaleffects updated to version 5.12.5-alt1 for branch p9 in task 239407.

Closed vulnerabilities

Published: 2017-10-04
Modified: 2024-11-21

CVE-2017-15011

The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:

ALT-PU-2019-3017-1

Package qt5-doc updated to version 5.12.5-alt1 for branch p9 in task 239407.

Closed vulnerabilities

Published: 2017-10-04
Modified: 2024-11-21

CVE-2017-15011

The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:

ALT-PU-2019-3018-1

Package qt5-wayland updated to version 5.12.5-alt1 for branch p9 in task 239407.

Closed vulnerabilities

Published: 2017-10-04
Modified: 2024-11-21

CVE-2017-15011

The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:

ALT-PU-2019-3019-1

Package qt5-webengine updated to version 5.12.5-alt1 for branch p9 in task 239407.

Closed vulnerabilities

Published: 2017-10-04
Modified: 2024-11-21

CVE-2017-15011

The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:

ALT-PU-2019-3020-1

Package qt5-canvas3d updated to version 5.12.5-alt1 for branch p9 in task 239407.

Closed vulnerabilities

Published: 2017-10-04
Modified: 2024-11-21

CVE-2017-15011

The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:

ALT-PU-2019-3021-1

Package qt5-3d updated to version 5.12.5-alt1 for branch p9 in task 239407.

Closed vulnerabilities

Published: 2017-10-04
Modified: 2024-11-21

CVE-2017-15011

The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:

ALT-PU-2019-3022-1

Package qt5-virtualkeyboard updated to version 5.12.5-alt1 for branch p9 in task 239407.

Closed vulnerabilities

Published: 2017-10-04
Modified: 2024-11-21

CVE-2017-15011

The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:

ALT-PU-2019-3023-1

Package qt5-scxml updated to version 5.12.5-alt1 for branch p9 in task 239407.

Closed vulnerabilities

Published: 2017-10-04
Modified: 2024-11-21

CVE-2017-15011

The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:

ALT-PU-2019-3024-1

Package qt5-charts updated to version 5.12.5-alt1 for branch p9 in task 239407.

Closed vulnerabilities

Published: 2017-10-04
Modified: 2024-11-21

CVE-2017-15011

The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:

ALT-PU-2019-3025-1

Package qt5-speech updated to version 5.12.5-alt1 for branch p9 in task 239407.

Closed vulnerabilities

Published: 2017-10-04
Modified: 2024-11-21

CVE-2017-15011

The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:

ALT-PU-2019-3026-1

Package qt5-datavis3d updated to version 5.12.5-alt1 for branch p9 in task 239407.

Closed vulnerabilities

Published: 2017-10-04
Modified: 2024-11-21

CVE-2017-15011

The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:

ALT-PU-2019-3027-1

Package qt5-gamepad updated to version 5.12.5-alt1 for branch p9 in task 239407.

Closed vulnerabilities

Published: 2017-10-04
Modified: 2024-11-21

CVE-2017-15011

The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:

ALT-PU-2019-3028-1

Package qt5-webview updated to version 5.12.5-alt1 for branch p9 in task 239407.

Closed vulnerabilities

Published: 2017-10-04
Modified: 2024-11-21

CVE-2017-15011

The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:

ALT-PU-2019-3029-1

Package qt5-networkauth updated to version 5.12.5-alt1 for branch p9 in task 239407.

Closed vulnerabilities

Published: 2017-10-04
Modified: 2024-11-21

CVE-2017-15011

The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:
VKontakte | Telegram | YouTube | Forum | GitHub | Bugzilla
Version: 2.1.0
Back to top