Browse Source

Updated qt4 (4.3.2 -> 4.3.3) : SECURITY : MEDIUM

CVE-2007-5965 (Medium - Network exploitable , Victim must voluntarily interact with attack mechanism) :
QSslSocket in Trolltech Qt 4.3.0 through 4.3.2 does not properly verify SSL certificates, which
might make it easier for remote attackers to trick a user into accepting an invalid server
certificate for a spoofed service, or trick a service into accepting an invalid client certificate for a
user.
early
Aldas Nabazas 17 years ago
parent
commit
938f08d5ec
  1. 6
      qt/qt4/qt4.desc

6
qt/qt4/qt4.desc

@ -3,7 +3,7 @@
[COPY] This copyright note is auto-generated by ./scripts/Create-CopyPatch. [COPY] This copyright note is auto-generated by ./scripts/Create-CopyPatch.
[COPY] [COPY]
[COPY] Filename: package/.../qt4/qt4.desc [COPY] Filename: package/.../qt4/qt4.desc
[COPY] Copyright (C) 2006 - 2007 The OpenSDE Project [COPY] Copyright (C) 2006 - 2008 The OpenSDE Project
[COPY] Copyright (C) 2004 - 2006 The T2 SDE Project [COPY] Copyright (C) 2004 - 2006 The T2 SDE Project
[COPY] Copyright (C) 1998 - 2004 Clifford Wolf [COPY] Copyright (C) 1998 - 2004 Clifford Wolf
[COPY] [COPY]
@ -32,7 +32,7 @@
[L] GPL [L] GPL
[S] Stable [S] Stable
[V] 4.3.2 [V] 4.3.3
[P] X -----5---9 127.000 [P] X -----5---9 127.000
[D] 3227526100 qt-x11-opensource-src-4.3.2.tar.gz ftp://ftp.trolltech.com/qt/source/ [D] 2480220202 qt-x11-opensource-src-4.3.3.tar.gz ftp://ftp.trolltech.com/qt/source/

Loading…
Cancel
Save