{"affected":[{"ecosystem_specific":{"binaries":[{"libQt6Core6":"6.4.2-150500.3.7.4","libQt6DBus6":"6.4.2-150500.3.7.4","libQt6Gui6":"6.4.2-150500.3.7.4","libQt6Network6":"6.4.2-150500.3.7.4","libQt6OpenGL6":"6.4.2-150500.3.7.4","libQt6Widgets6":"6.4.2-150500.3.7.4","qt6-network-tls":"6.4.2-150500.3.7.4"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Desktop Applications 15 SP5","name":"qt6-base","purl":"pkg:rpm/suse/qt6-base&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"6.4.2-150500.3.7.4"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libQt6Concurrent6":"6.4.2-150500.3.7.4","libQt6Core6":"6.4.2-150500.3.7.4","libQt6DBus6":"6.4.2-150500.3.7.4","libQt6Gui6":"6.4.2-150500.3.7.4","libQt6Network6":"6.4.2-150500.3.7.4","libQt6OpenGL6":"6.4.2-150500.3.7.4","libQt6OpenGLWidgets6":"6.4.2-150500.3.7.4","libQt6PrintSupport6":"6.4.2-150500.3.7.4","libQt6Sql6":"6.4.2-150500.3.7.4","libQt6Test6":"6.4.2-150500.3.7.4","libQt6Widgets6":"6.4.2-150500.3.7.4","libQt6Xml6":"6.4.2-150500.3.7.4","qt6-base-common-devel":"6.4.2-150500.3.7.4","qt6-base-devel":"6.4.2-150500.3.7.4","qt6-concurrent-devel":"6.4.2-150500.3.7.4","qt6-core-devel":"6.4.2-150500.3.7.4","qt6-core-private-devel":"6.4.2-150500.3.7.4","qt6-dbus-devel":"6.4.2-150500.3.7.4","qt6-gui-devel":"6.4.2-150500.3.7.4","qt6-gui-private-devel":"6.4.2-150500.3.7.4","qt6-kmssupport-devel-static":"6.4.2-150500.3.7.4","qt6-kmssupport-private-devel":"6.4.2-150500.3.7.4","qt6-network-devel":"6.4.2-150500.3.7.4","qt6-network-tls":"6.4.2-150500.3.7.4","qt6-opengl-devel":"6.4.2-150500.3.7.4","qt6-opengl-private-devel":"6.4.2-150500.3.7.4","qt6-openglwidgets-devel":"6.4.2-150500.3.7.4","qt6-platformsupport-devel-static":"6.4.2-150500.3.7.4","qt6-printsupport-devel":"6.4.2-150500.3.7.4","qt6-sql-devel":"6.4.2-150500.3.7.4","qt6-sql-sqlite":"6.4.2-150500.3.7.4","qt6-test-devel":"6.4.2-150500.3.7.4","qt6-widgets-devel":"6.4.2-150500.3.7.4","qt6-widgets-private-devel":"6.4.2-150500.3.7.4","qt6-xml-devel":"6.4.2-150500.3.7.4"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Package Hub 15 SP5","name":"qt6-base","purl":"pkg:rpm/suse/qt6-base&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"6.4.2-150500.3.7.4"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libQt6Concurrent6":"6.4.2-150500.3.7.4","libQt6Core6":"6.4.2-150500.3.7.4","libQt6DBus6":"6.4.2-150500.3.7.4","libQt6Gui6":"6.4.2-150500.3.7.4","libQt6Network6":"6.4.2-150500.3.7.4","libQt6OpenGL6":"6.4.2-150500.3.7.4","libQt6OpenGLWidgets6":"6.4.2-150500.3.7.4","libQt6PrintSupport6":"6.4.2-150500.3.7.4","libQt6Sql6":"6.4.2-150500.3.7.4","libQt6Test6":"6.4.2-150500.3.7.4","libQt6Widgets6":"6.4.2-150500.3.7.4","libQt6Xml6":"6.4.2-150500.3.7.4","qt6-base-common-devel":"6.4.2-150500.3.7.4","qt6-base-devel":"6.4.2-150500.3.7.4","qt6-base-docs-html":"6.4.2-150500.3.7.1","qt6-base-docs-qch":"6.4.2-150500.3.7.1","qt6-base-examples":"6.4.2-150500.3.7.4","qt6-base-private-devel":"6.4.2-150500.3.7.4","qt6-concurrent-devel":"6.4.2-150500.3.7.4","qt6-core-devel":"6.4.2-150500.3.7.4","qt6-core-private-devel":"6.4.2-150500.3.7.4","qt6-dbus-devel":"6.4.2-150500.3.7.4","qt6-dbus-private-devel":"6.4.2-150500.3.7.4","qt6-docs-common":"6.4.2-150500.3.7.4","qt6-gui-devel":"6.4.2-150500.3.7.4","qt6-gui-private-devel":"6.4.2-150500.3.7.4","qt6-kmssupport-devel-static":"6.4.2-150500.3.7.4","qt6-kmssupport-private-devel":"6.4.2-150500.3.7.4","qt6-network-devel":"6.4.2-150500.3.7.4","qt6-network-private-devel":"6.4.2-150500.3.7.4","qt6-network-tls":"6.4.2-150500.3.7.4","qt6-networkinformation-glib":"6.4.2-150500.3.7.4","qt6-networkinformation-nm":"6.4.2-150500.3.7.4","qt6-opengl-devel":"6.4.2-150500.3.7.4","qt6-opengl-private-devel":"6.4.2-150500.3.7.4","qt6-openglwidgets-devel":"6.4.2-150500.3.7.4","qt6-platformsupport-devel-static":"6.4.2-150500.3.7.4","qt6-platformsupport-private-devel":"6.4.2-150500.3.7.4","qt6-platformtheme-gtk3":"6.4.2-150500.3.7.4","qt6-platformtheme-xdgdesktopportal":"6.4.2-150500.3.7.4","qt6-printsupport-cups":"6.4.2-150500.3.7.4","qt6-printsupport-devel":"6.4.2-150500.3.7.4","qt6-printsupport-private-devel":"6.4.2-150500.3.7.4","qt6-sql-devel":"6.4.2-150500.3.7.4","qt6-sql-mysql":"6.4.2-150500.3.7.4","qt6-sql-postgresql":"6.4.2-150500.3.7.4","qt6-sql-private-devel":"6.4.2-150500.3.7.4","qt6-sql-sqlite":"6.4.2-150500.3.7.4","qt6-sql-unixODBC":"6.4.2-150500.3.7.4","qt6-test-devel":"6.4.2-150500.3.7.4","qt6-test-private-devel":"6.4.2-150500.3.7.4","qt6-widgets-devel":"6.4.2-150500.3.7.4","qt6-widgets-private-devel":"6.4.2-150500.3.7.4","qt6-xml-devel":"6.4.2-150500.3.7.4","qt6-xml-private-devel":"6.4.2-150500.3.7.4"}]},"package":{"ecosystem":"openSUSE:Leap 15.5","name":"qt6-base","purl":"pkg:rpm/opensuse/qt6-base&distro=openSUSE%20Leap%2015.5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"6.4.2-150500.3.7.4"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libQt6Concurrent6":"6.4.2-150500.3.7.4","libQt6Core6":"6.4.2-150500.3.7.4","libQt6DBus6":"6.4.2-150500.3.7.4","libQt6Gui6":"6.4.2-150500.3.7.4","libQt6Network6":"6.4.2-150500.3.7.4","libQt6OpenGL6":"6.4.2-150500.3.7.4","libQt6OpenGLWidgets6":"6.4.2-150500.3.7.4","libQt6PrintSupport6":"6.4.2-150500.3.7.4","libQt6Sql6":"6.4.2-150500.3.7.4","libQt6Test6":"6.4.2-150500.3.7.4","libQt6Widgets6":"6.4.2-150500.3.7.4","libQt6Xml6":"6.4.2-150500.3.7.4","qt6-base-common-devel":"6.4.2-150500.3.7.4","qt6-base-devel":"6.4.2-150500.3.7.4","qt6-base-docs-html":"6.4.2-150500.3.7.1","qt6-base-docs-qch":"6.4.2-150500.3.7.1","qt6-base-examples":"6.4.2-150500.3.7.4","qt6-base-private-devel":"6.4.2-150500.3.7.4","qt6-concurrent-devel":"6.4.2-150500.3.7.4","qt6-core-devel":"6.4.2-150500.3.7.4","qt6-core-private-devel":"6.4.2-150500.3.7.4","qt6-dbus-devel":"6.4.2-150500.3.7.4","qt6-dbus-private-devel":"6.4.2-150500.3.7.4","qt6-docs-common":"6.4.2-150500.3.7.4","qt6-gui-devel":"6.4.2-150500.3.7.4","qt6-gui-private-devel":"6.4.2-150500.3.7.4","qt6-kmssupport-devel-static":"6.4.2-150500.3.7.4","qt6-kmssupport-private-devel":"6.4.2-150500.3.7.4","qt6-network-devel":"6.4.2-150500.3.7.4","qt6-network-private-devel":"6.4.2-150500.3.7.4","qt6-network-tls":"6.4.2-150500.3.7.4","qt6-networkinformation-glib":"6.4.2-150500.3.7.4","qt6-networkinformation-nm":"6.4.2-150500.3.7.4","qt6-opengl-devel":"6.4.2-150500.3.7.4","qt6-opengl-private-devel":"6.4.2-150500.3.7.4","qt6-openglwidgets-devel":"6.4.2-150500.3.7.4","qt6-platformsupport-devel-static":"6.4.2-150500.3.7.4","qt6-platformsupport-private-devel":"6.4.2-150500.3.7.4","qt6-platformtheme-gtk3":"6.4.2-150500.3.7.4","qt6-platformtheme-xdgdesktopportal":"6.4.2-150500.3.7.4","qt6-printsupport-cups":"6.4.2-150500.3.7.4","qt6-printsupport-devel":"6.4.2-150500.3.7.4","qt6-printsupport-private-devel":"6.4.2-150500.3.7.4","qt6-sql-devel":"6.4.2-150500.3.7.4","qt6-sql-mysql":"6.4.2-150500.3.7.4","qt6-sql-postgresql":"6.4.2-150500.3.7.4","qt6-sql-private-devel":"6.4.2-150500.3.7.4","qt6-sql-sqlite":"6.4.2-150500.3.7.4","qt6-sql-unixODBC":"6.4.2-150500.3.7.4","qt6-test-devel":"6.4.2-150500.3.7.4","qt6-test-private-devel":"6.4.2-150500.3.7.4","qt6-widgets-devel":"6.4.2-150500.3.7.4","qt6-widgets-private-devel":"6.4.2-150500.3.7.4","qt6-xml-devel":"6.4.2-150500.3.7.4","qt6-xml-private-devel":"6.4.2-150500.3.7.4"}]},"package":{"ecosystem":"openSUSE:Leap 15.5","name":"qt6-base-docs","purl":"pkg:rpm/opensuse/qt6-base-docs&distro=openSUSE%20Leap%2015.5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"6.4.2-150500.3.7.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for qt6-base fixes the following issues:\n\n- CVE-2023-34410: Fixed certificate validation does not always consider whether the root of a chain is a configured CA certificate (bsc#1211994).\n- CVE-2023-33285: Fixed buffer overflow in QDnsLookup (bsc#1211642).\n- CVE-2023-32762: Fixed Qt Network incorrectly parses the strict-transport-security (HSTS) header (bsc#1211797).\n- CVE-2023-38197: Fixed infinite loops in QXmlStreamReader(bsc#1213326).\n- CVE-2023-24607: Fixed Qt SQL ODBC driver plugin DOS (bsc#1209616).\n","id":"SUSE-SU-2023:3225-1","modified":"2023-08-08T07:17:27Z","published":"2023-08-08T07:17:27Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2023/suse-su-20233225-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1209616"},{"type":"REPORT","url":"https://bugzilla.suse.com/1211642"},{"type":"REPORT","url":"https://bugzilla.suse.com/1211797"},{"type":"REPORT","url":"https://bugzilla.suse.com/1211994"},{"type":"REPORT","url":"https://bugzilla.suse.com/1213326"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-24607"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-32762"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-33285"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-34410"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-38197"}],"related":["CVE-2023-24607","CVE-2023-32762","CVE-2023-33285","CVE-2023-34410","CVE-2023-38197"],"summary":"Security update for qt6-base","upstream":["CVE-2023-24607","CVE-2023-32762","CVE-2023-33285","CVE-2023-34410","CVE-2023-38197"]}