{"affected":[{"ecosystem_specific":{"binaries":[{"libQt5Concurrent5":"5.6.1-17.21.3","libQt5Core5":"5.6.1-17.21.3","libQt5DBus5":"5.6.1-17.21.3","libQt5Gui5":"5.6.1-17.21.3","libQt5Network5":"5.6.1-17.21.3","libQt5OpenGL5":"5.6.1-17.21.3","libQt5PrintSupport5":"5.6.1-17.21.3","libQt5Sql5":"5.6.1-17.21.3","libQt5Sql5-mysql":"5.6.1-17.21.3","libQt5Sql5-postgresql":"5.6.1-17.21.3","libQt5Sql5-sqlite":"5.6.1-17.21.3","libQt5Sql5-unixODBC":"5.6.1-17.21.3","libQt5Test5":"5.6.1-17.21.3","libQt5Widgets5":"5.6.1-17.21.3","libQt5Xml5":"5.6.1-17.21.3"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 12 SP2-BCL","name":"libqt5-qtbase","purl":"pkg:rpm/suse/libqt5-qtbase&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCL"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"5.6.1-17.21.3"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for libqt5-qtbase fixes the following issues:\n\n- CVE-2020-24741: Fixed a bug that allowed QLibrary to load libraries relative to CWD which could result in arbitrary code execution. (bsc#1189408)\n","id":"SUSE-SU-2021:3268-1","modified":"2021-09-30T13:54:08Z","published":"2021-09-30T13:54:08Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2021/suse-su-20213268-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1178600"},{"type":"REPORT","url":"https://bugzilla.suse.com/1189408"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-24741"}],"related":["CVE-2020-24741"],"summary":"Security update for libqt5-qtbase","upstream":["CVE-2020-24741"]}