Debian Security Advisory
DSA-4617-1 qtbase-opensource-src -- security update
- Date Reported:
- 03 Feb 2020
- Affected Packages:
- Security database references:
- In Mitre's CVE dictionary: CVE-2020-0569, CVE-2020-0570.
- More information:
Two security issues were found in the Qt library, which could result in plugins and libraries being loaded from the current working directory, resulting in potential code execution.
For the oldstable distribution (stretch), these problems have been fixed in version 5.7.1+dfsg-3+deb9u2.
For the stable distribution (buster), these problems have been fixed in version 5.11.3+dfsg1-1+deb10u3.
We recommend that you upgrade your qtbase-opensource-src packages.
For the detailed security status of qtbase-opensource-src please refer to its security tracker page at: https://security-tracker.debian.org/tracker/qtbase-opensource-src