Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 944807 - <dev-qt/qtwebengine-5.15.16_p20241115: Multiple vulnerabilities
Summary: <dev-qt/qtwebengine-5.15.16_p20241115: Multiple vulnerabilities
Status: CONFIRMED
Alias: None
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal normal
Assignee: Gentoo Security
URL:
Whiteboard: B1 [glsa?]
Keywords:
Depends on: CVE-2023-7104, CVE-2024-3157, CVE-2024-3516 qt-5.15.16-stable
Blocks: CVE-2024-4761 CVE-2024-5157, CVE-2024-5158, CVE-2024-5159, CVE-2024-5160 CVE-2024-5830, CVE-2024-5831, CVE-2024-5832, CVE-2024-5833, CVE-2024-5834, CVE-2024-5835, CVE-2024-5836, CVE-2024-5837, CVE-2024-5838, CVE-2024-5839, CVE-2024-5840, CVE-2024-5841, CVE-2024-5842, CVE-2024-5843, CVE-2024-5844, CVE-2024-5845, CVE-2024-5846, CVE-2024-5847 CVE-2024-6290, CVE-2024-6291, CVE-2024-6292, CVE-2024-6293 CVE-2024-6988, CVE-2024-6989, CVE-2024-6991, CVE-2024-6994, CVE-2024-6995, CVE-2024-6996, CVE-2024-6997, CVE-2024-6998, CVE-2024-6999, CVE-2024-7000, CVE-2024-7001, CVE-2024-7003, CVE-2024-7004, CVE-2024-7005 CVE-2024-7532, CVE-2024-7533, CVE-2024-7534, CVE-2024-7535, CVE-2024-7536, CVE-2024-7550 CVE-2024-7964, CVE-2024-7965, CVE-2024-7966, CVE-2024-7967, CVE-2024-7968, CVE-2024-7971, CVE-2024-7972, CVE-2024-7973, CVE-2024-7974, CVE-2024-7975, CVE-2024-7976, CVE-2024-7977, CVE-2024-7978, CVE-2024-7979, CVE-2024-7980, CVE-2024-7981, CVE-2024-8033, CVE-2024-8034, CVE-2024-8035 CVE-2024-7969, CVE-2024-8193, CVE-2024-8194, CVE-2024-8198 CVE-2024-45490, CVE-2024-45491, CVE-2024-45492 CVE-2024-8636, CVE-2024-8637, CVE-2024-8638, CVE-2024-8639 CVE-2024-9120, CVE-2024-9121, CVE-2024-9122, CVE-2024-9123 CVE-2024-9602, CVE-2024-9603 CVE-2024-10229, CVE-2024-10230, CVE-2024-10231 CVE-2024-10826, CVE-2024-10827 CVE-2024-4058, CVE-2024-4059, CVE-2024-4060 CVE-2024-4558, CVE-2024-4559
  Show dependency tree
 
Reported: 2024-11-24 12:14 UTC by Andreas Sturmlechner
Modified: 2024-12-29 09:31 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Andreas Sturmlechner gentoo-dev 2024-11-24 12:14:10 UTC
Too many.

>    * Fixup: [Backport] CVE-2024-10827: Use after free in Serial
>    * [Backport] CVE-2024-10827: Use after free in Serial
>  
>  Fixes: QTBUG-130925
>  Fixes: QTBUG-130631
>
>    * [Backport] CVE-2024-10229: Inappropriate implementation in Extensions
>  
>  Fixes: QTBUG-130487
>  Fixes: QTBUG-130631
>
>    * [Backport] CVE-2024-9602: Type Confusion in V8
>    * [Backport] CVE-2024-9603: Type Confusion in V8
>  
>  Fixes: QTBUG-129075
>  Fixes: QTBUG-130169
>  Fixes: QTBUG-130171
>
>    * FIXUP: [Backport] CVE-2024-7965: Inappropriate implementation in V8
>    * Fix building with Python 3 on Windows
>    * [Backport] CVE-2024-45492 / Security bug 364778067 (3/3)
>    * [Backport] CVE-2024-45491 / Security bug 364778067 (2/3)
>    * [Backport] CVE-2024-45490 / Security bug 364778067 (1/3)
>    * [Backport] CVE-2024-9123: Integer overflow in Skia
>    * [Backport] CVE-2024-5158: Type Confusion in V8
>    * [Backport] CVE-2024-7971: Type confusion in V8
>    * [Backport] CVE-2024-4761: Out of bounds write in V8
>    * [Backport] CVE-2024-8636: Heap buffer overflow in Skia
>    * [Backport] CVE-2024-8198: Heap buffer overflow in Skia
>    * [Backport] Security bug 346799730
>    * [Backport] CVE-2024-7967: Heap buffer overflow in Fonts (3/3)
>    * [Backport] CVE-2024-7967: Heap buffer overflow in Fonts (2/3)
>    * [Backport] CVE-2024-7967: Heap buffer overflow in Fonts (1/3)
>    * [Backport] CVE-2024-7965: Inappropriate implementation in V8
>    * [Backport] CVE-2024-7532: Out of bounds memory access in ANGLE (2/2)
>    * [Backport] CVE-2024-7532: Out of bounds memory access in ANGLE (1/2)
>    * Fix build with GCC 15
>    * [Backport] CVE-2024-7536: Use after free in WebAudio
>    * [Backport] Dependency for CVE-2024-7536
>    * [Backport] Security bug 338574384
>    * [Backport] CVE-2024-6996: Race in Frames
>    * [Backport] CVE-2024-6989: Use after free in Loader
>    * [Backport] CVE-2024-6291: Use after free in Swiftshader
>    * [Backport] CVE-2024-5846: Use after free in PDFium
>    * [Backport] Security bug 340606786
>    * [Backport] CVE-2024-5496: Use after free in Media Session
>    * [Backport] Dependency for CVE-2024-3914
>    * [Backport] Security bug 329699609
>    * [Backport] CVE-2024-3914: Use after free in V8 (2/2)
>    * [Backport] CVE-2024-3914: Use after free in V8 (1/2)
>    * [Backport] CVE-2024-4558: Use after free in ANGLE
>    * [Backport] Security bug 327698060
>    * [Backport] CVE-2024-4058: Type Confusion in ANGLE
>    * [Backport] Security bug 40940917
>    * [Backport] CVE-2024-3837: Use after free in QUIC
>    * [Backport] CVE-2024-3839: Out of bounds read in Fonts
>  
>  Fixes: QTBUG-124697
>  Fixes: QTBUG-124717
>  Fixes: QTBUG-125269
>  Fixes: QTBUG-125270
>  Fixes: QTBUG-125425
>  Fixes: QTBUG-125948
>  Fixes: QTBUG-126027
>  Fixes: QTBUG-129247
>  Fixes: QTBUG-129248
>  Fixes: QTBUG-129249
>  Fixes: QTBUG-129250
>  Fixes: QTBUG-129046
>  Fixes: QTBUG-129051
>  Fixes: QTBUG-129273
>  Fixes: QTBUG-129274
>  Fixes: QTBUG-129275
>  Fixes: QTBUG-129276
>  Fixes: QTBUG-129277
>  Fixes: QTBUG-129077
>  Fixes: QTBUG-129313
Comment 1 Andreas Sturmlechner gentoo-dev 2024-12-29 09:31:02 UTC
(cleanup done)