-
Committer:
Marc Deslauriers
-
Date:
2013-02-14 21:44:27 UTC
-
Revision ID:
marc.deslauriers@canonical.com-20130214214427-8o0aeyu6lnrn8mpd
Tags: 4:4.8.4+dfsg-0ubuntu5
* SECURITY UPDATE: incorrect errors with certificate verification
- debian/patches/CVE-2012-6093.patch: use openssl access functions to
properly handle layout changes in
src/network/ssl/qsslsocket_openssl.cpp,
src/network/ssl/qsslsocket_openssl_symbols.cpp,
src/network/ssl/qsslsocket_openssl_symbols_p.h.
- CVE-2012-6093
* SECURITY UPDATE: shared memory segments incorrect permissions
- debian/patches/CVE-2013-0254.patch: set appropriate permissions in
src/corelib/kernel/qsharedmemory_unix.cpp,
src/corelib/kernel/qsystemsemaphore_unix.cpp,
src/gui/image/qnativeimage.cpp,
src/gui/image/qpixmap_x11.cpp,
src/plugins/platforms/xcb/qxcbwindowsurface.cpp,
src/plugins/platforms/xlib/qxlibwindowsurface.cpp,
tools/qvfb/qvfbshmem.cpp.
- CVE-2013-0254