dgit.raspbian.org Git - qt6-base.git/commit

author	Debian Qt/KDE Maintainers <debian-qt-kde@lists.debian.org>
	Thu, 29 Feb 2024 21:45:27 +0000 (21:45 +0000)
committer	Benjamin Drung <bdrung@debian.org>
	Thu, 29 Feb 2024 21:45:27 +0000 (21:45 +0000)
commit	f238c3b1c87d2a210215ed7946447ecbde67e202
tree	bd19271171d766cf529ce85d3450bc66222e61d9	tree \| snapshot
parent	059ddd1d85bda9cd75bc57e83e18f1b5d0e12b5e	commit \| diff

Fix CVE-2023-24607

Forwarded: not-needed

CVE-2023-24607 can trigger a DOS with a specifically crafted string,
see https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031871.
This patch https://codereview.qt-project.org/c/qt/qtbase/+/456216,
https://codereview.qt-project.org/c/qt/qtbase/+/457637 and
https://codereview.qt-project.org/c/qt/qtbase/+/457937
See: https://www.qt.io/blog/security-advisory-qt-sql-odbc-driver-plugin

Gbp-Pq: Name cve-2023-24607.patch

src/plugins/sqldrivers/odbc/qsql_odbc.cpp

diff | blob | history

Unnamed repository; edit this file 'description' to name the repository.

RSS Atom