Ubuntu Update For Qt4-x11 USN-1628-1 Network Vulnerability

Summary

Ubuntu Update for Linux kernel vulnerabilities USN-1628-1

Solution

Please Install the Updated Packages.

Insight

Juliano Rizzo and Thai Duong discovered a flaw in the Transport Layer Security (TLS) protocol when it is used with data compression. If an attacker were able to perform a man-in-the-middle attack, this flaw could be exploited to view sensitive information. This update disables TLS data compression in Qt by default.

Affected

qt4-x11 on Ubuntu 12.04 LTS , Ubuntu 11.10 , Ubuntu 10.04 LTS

Severity

Classification

CVE CVE-2012-4929

CVSS	Base Score: 2.6 AV:N/AC:H/Au:N/C:P/I:N/A:N

Related Vulnerabilities

Ubuntu Update for linux USN-1992-1
Ubuntu Update for net-snmp USN-1450-1
Ubuntu Update for heat USN-2249-1
Ubuntu Update for apt USN-1662-1
Ubuntu Update for cgmanager USN-2451-1

Ubuntu Update for qt4-x11 USN-1628-1

Take action and discover your vulnerabilities