Slackware Advisory SSA:2004-236-01 Qt Network Vulnerability

Summary

The remote host is missing an update as announced via advisory SSA:2004-236-01.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=SSA:2004-236-01

Insight

New Qt packages are available for Slackware 9.0, 9.1, 10.0, and -current to fix security issues. Bugs in the routines that handle PNG, BMP, GIF, and JPEG images may allow an attacker to cause unauthorized code to execute when a specially crafted image file is processed. These flaws may also cause crashes that lead to a denial of service. More details about these issues may be found in the Common Vulnerabilities and Exposures (CVE) database: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0691 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0692 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0693

Severity

Classification

CVE CVE-2004-0691, CVE-2004-0692, CVE-2004-0693

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Slackware Advisory SSA:2005-203-04 gxine format string vulnerability
Slackware Advisory SSA:2005-111-03 gaim
Slackware Advisory SSA:2004-043-01 mutt security update
Slackware Advisory SSA:2006-272-01 openssl
Slackware Advisory SSA:2006-081-01 sendmail

Take action and discover your vulnerabilities