projects / qt6-base.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9e98893) | patch
Fix CVE-2023-24607
authorDebian Qt/KDE Maintainers <debian-qt-kde@lists.debian.org>
Fri, 22 Dec 2023 15:11:45 +0000 (16:11 +0100)
committerPatrick Franz <deltaone@debian.org>
Fri, 22 Dec 2023 15:11:45 +0000 (16:11 +0100)
commit036ea582f43d9df9fc49c2c2570eaeb1f5f0629a
tree787097b3bbd40ae3fda0943c3c8f8b666d0a1ea6tree | snapshot
parent9e98893d3675ff4d57af9083bf91558582f5d1d2commit | diff
Fix CVE-2023-24607

Forwarded: not-needed

CVE-2023-24607 can trigger a DOS with a specifically crafted string,
see https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031871.
This patch https://codereview.qt-project.org/c/qt/qtbase/+/456216,
https://codereview.qt-project.org/c/qt/qtbase/+/457637 and
https://codereview.qt-project.org/c/qt/qtbase/+/457937
See: https://www.qt.io/blog/security-advisory-qt-sql-odbc-driver-plugin

Gbp-Pq: Name cve-2023-24607.patch
src/plugins/sqldrivers/odbc/qsql_odbc.cpp diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.