Jump to:

CVE-2024-39936

Jump to:

CVE-2024-39936

Package qt6-svg updated to version 6.8.2-alt1 for branch p11 in task 375003.

Published: 2024-07-05
Modified: 2025-03-19

CVE-2024-39936

An issue was discovered in HTTP2 in Qt before 5.15.18, 6.x before 6.2.13, 6.3.x through 6.5.x before 6.5.7, and 6.6.x through 6.7.x before 6.7.3. Code to make security-relevant decisions about an established connection may execute too early, because the encrypted() signal has not yet been emitted and processed..

Severity: MEDIUM (5.9) Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

References:

https://codereview.qt-project.org/c/qt/qtbase/+/571601
https://codereview.qt-project.org/c/qt/qtbase/+/571601

Version: 2.1.0

Package qt6-svg update in p11 on 2025-02-28

ALT-PU-2025-3162-3

Closed vulnerabilities

CVE-2024-39936