← Back to team overview

ubuntu-sdk-bugs team mailing list archive

  1. ubuntu-sdk-bugs team
  2. Mailing list archive
  3. Message #08162

[Bug 1987336] Re: Multiple vulnerabilities in Focal

  Thread PreviousDate PreviousThread Next 
** Description changed:

  The version in Ubuntu 20.04 is vulnerable to CVE-2020-13962,
- CVE-2020-17507 and CVE-2022-25255.
+ CVE-2020-17507, CVE-2022-25255, CVE-2023-24607, CVE-2023-32762,
+ CVE-2023-32763, CVE-2023-33285, CVE-2023-37369 and CVE-2023-38197.
  
- I will provide a debdiff in this week.
+ The versions in Ubuntu 22.04 are vulnerable to CVE-2023-24607,
+ CVE-2023-32762   , CVE-2023-32763, CVE-2023-33285, CVE-2023-37369 and
+ CVE-2023-38197.
+ 
+ I will provide debdiffs until 3 September.

** Also affects: qt6-base (Ubuntu)
   Importance: Undecided
       Status: New

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-24607

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-32762

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-32763

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-33285

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-37369

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-38197

** Summary changed:

- Multiple vulnerabilities in Focal
+ Multiple vulnerabilities in Focal and Jammy

** Changed in: qt6-base (Ubuntu)
       Status: New => Confirmed

** Changed in: qt6-base (Ubuntu)
     Assignee: (unassigned) => Luís Infante da Câmara (luis220413)

-- 
You received this bug notification because you are a member of Ubuntu
SDK bug tracking, which is subscribed to qtbase-opensource-src in
Ubuntu.
https://bugs.launchpad.net/bugs/1987336

Title:
  Multiple vulnerabilities in Focal and Jammy

Status in qt6-base package in Ubuntu:
  Confirmed
Status in qtbase-opensource-src package in Ubuntu:
  Confirmed

Bug description:
  The version in Ubuntu 20.04 is vulnerable to CVE-2020-13962,
  CVE-2020-17507, CVE-2022-25255, CVE-2023-24607, CVE-2023-32762,
  CVE-2023-32763, CVE-2023-33285, CVE-2023-37369 and CVE-2023-38197.

  The versions in Ubuntu 22.04 are vulnerable to CVE-2023-24607,
  CVE-2023-32762   , CVE-2023-32763, CVE-2023-33285, CVE-2023-37369 and
  CVE-2023-38197.

  I will provide debdiffs until 3 September.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/qt6-base/+bug/1987336/+subscriptions
  Thread PreviousDate PreviousThread Next