Bug 211347

Summary: CVE-2006-4811 qt integer overflow
Product: [Fedora] Fedora Reporter: Josh Bressers <bressers>
Component: kdelibsAssignee: Than Ngo <than>
Status: CLOSED NEXTRELEASE QA Contact:
Severity: urgent Docs Contact:
Priority: urgent    
Version: 6CC: security-response-team
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard: impact=critical,source=vendorsec,reported=20061013,public=20061013
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2006-11-22 17:22:53 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Josh Bressers 2006-10-18 19:23:13 UTC
+++ This bug was initially created as a clone of Bug #211342 +++

An interger overflow flaw was found in the way qt handles certain pixmax
requests.  This flaw can lead to arbitrary data being written onto the heap,
possibly resulting in arbitrary code execution withing applications using qt
(such as knoqueror and kmail)

-- Additional comment from rdieter.edu on 2006-10-18 15:13 EST --
Isn't this a qt, not a kdelibs, bug?

Comment 1 Rex Dieter 2006-11-22 17:22:53 UTC
qt-3.3.7-0.1 update addressed this.