Bug 907119 (CVE-2023-32763)

Summary:	<dev-qt/qtgui-5.15.9-r1: QTextLayout overflow with SVG images
Product:	Gentoo Security	Reporter:	Sam James <sam>
Component:	Vulnerabilities	Assignee:	Gentoo Security <security>
Status:	IN_PROGRESS ---
Severity:	normal	CC:	qt
Priority:	Normal
Version:	unspecified
Hardware:	All
OS:	Linux
URL:	https://www.qt.io/blog/security-advisory-qt-svg-1
See Also:	https://bugreports.qt.io/browse/QTBUG-113337
Whiteboard:	A3 [glsa?]
Package list:		Runtime testing required:	---
Bug Depends on:	907047, 909313
Bug Blocks:

Description Sam James archtester

2023-05-25 03:32:28 UTC

See https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=81ab1553032718e562bc55b45c048bae863b747a

"""
See also: https://www.qt.io/blog/security-advisory-qt-svg-1
QTBUG: https://bugreports.qt.io/browse/QTBUG-113337
"""

Comment 1 Larry the Git Cow gentoo-dev

2023-07-13 08:42:21 UTC

The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=9b6222fecd6cbfa3039258f17ea82a02d0c4e46f

commit 9b6222fecd6cbfa3039258f17ea82a02d0c4e46f
Author:     Andreas Sturmlechner <asturm@gentoo.org>
AuthorDate: 2023-07-13 07:35:56 +0000
Commit:     Andreas Sturmlechner <asturm@gentoo.org>
CommitDate: 2023-07-13 08:42:03 +0000

    dev-qt/qtgui: drop 5.15.9
    
    Bug: https://bugs.gentoo.org/907119
    Signed-off-by: Andreas Sturmlechner <asturm@gentoo.org>

 dev-qt/qtgui/Manifest                              |   2 -
 .../qtgui/files/qtgui-5.15.9-CVE-2023-32763.patch  |  71 --------
 dev-qt/qtgui/qtgui-5.15.9-r1.ebuild                | 180 ---------------------
 dev-qt/qtgui/qtgui-5.15.9.ebuild                   | 178 --------------------
 4 files changed, 431 deletions(-)