Copied from
ubuntu trusty in
Private PPA for Ubuntu Security Team
by Marc Deslauriers
Changelog
qtbase-opensource-src (5.2.1+dfsg-1ubuntu14.3) trusty-security; urgency=medium
* SECURITY UPDATE: denial of service via crafted GIF image
- debian/patches/CVE-2014-0190.patch: check for broken image in
src/gui/image/qgifhandler.cpp.
- CVE-2014-0190
* SECURITY UPDATE: denial of service via crafted BMP
- debian/patches/CVE-2015-0295.patch: fix division by zero in
src/gui/image/qbmphandler.cpp.
- CVE-2015-0295
* SECURITY UPDATE: denial of service and possible code execution via
crafted BMP or ICO images
- debian/patches/CVE-2015-1858-1859.patch: move check to better
location in src/gui/image/qbmphandler.cpp, check depth in
src/plugins/imageformats/ico/qicohandler.cpp.
- CVE-2015-1858
- CVE-2015-1859
* SECURITY UPDATE: denial of service and possible code exection via
crafted GIF image
- debian/patches/CVE-2015-1860.patch: check bounds in
src/gui/image/qgifhandler.cpp.
- CVE-2015-1860
-- Marc Deslauriers <email address hidden> Wed, 27 May 2015 13:55:50 -0400