-
qtbase-opensource-src (5.12.4+dfsg-4ubuntu1.1) eoan-security; urgency=medium
* SECURITY UPDATE: DoS via text file containing many directional chars
- debian/patches/CVE-2019-18281.patch: add bounds check to
src/gui/text/qtextengine.cpp.
- CVE-2019-18281
* SECURITY UPDATE: QPluginLoader loads plugins from the CWD
- debian/patches/CVE-2020-0569.patch: do not load plugin from the $PWD
in src/corelib/plugin/qpluginloader.cpp.
- CVE-2020-0569
* SECURITY UPDATE: QLibrary loads libraries from relative path from CWD
- debian/patches/CVE-2020-0570.patch: do not attempt to load a library
relative to $PWD in src/corelib/plugin/qlibrary_unix.cpp.
- CVE-2020-0570
-- Marc Deslauriers <email address hidden> Fri, 07 Feb 2020 11:18:41 -0500
-
qtbase-opensource-src (5.12.4+dfsg-4ubuntu1) eoan; urgency=medium
* Backport two patches from upstream 5.12.5 release:
- Use Xft DPI as basis for HiDPI scaling (LP: #1834333).
- Fix crash when closing floating QDialogs, by reverting a breaking
change from 5.12.4 release.
* Update symbols files from the current build logs.
-- Dmitry Shachnev <email address hidden> Thu, 03 Oct 2019 11:59:59 +0300
-
qtbase-opensource-src (5.12.4+dfsg-4build1) eoan; urgency=medium
* No change rebuild for libmysqlclient21.
-- Robie Basak <email address hidden> Mon, 12 Aug 2019 02:04:58 +0000
-
qtbase-opensource-src (5.12.4+dfsg-4) experimental; urgency=medium
* Mark libqxcb-glx-integration.so and the corresponding CMake file as
not installed on armel and armhf.
-- Dmitry Shachnev <email address hidden> Thu, 04 Jul 2019 22:35:09 +0300
-
qtbase-opensource-src (5.12.2+dfsg-4ubuntu2) eoan; urgency=medium
* Backport upstream patch to fix nullptr dereference in HTTP handler
(LP: #1833536).
-- Dmitry Shachnev <email address hidden> Fri, 21 Jun 2019 19:43:18 +0300
-
qtbase-opensource-src (5.12.2+dfsg-4ubuntu1) disco; urgency=medium
* Fix an endianness issue in the bundled copy of tinyCBOR library.
-- Dmitry Shachnev <email address hidden> Thu, 11 Apr 2019 16:29:37 +0300
