nixpkgs

Commit Graph

Author	SHA1	Message	Date
Andreas Rammhold	2f5d37b77b	qt511: 5.11.1 -> 5.11.3 This fixes * CVE-2018-15518, Qt Base: “double free or corruption” in QXmlStreamReader * CVE-2018-19873, Qt Base: QBmpHandler segfault on malformed BMP file * CVE-2018-19870, Qt Base: Check for QImage allocation failure in qgifhandler * CVE-2018-19871, Qt Imageformats: QImage: QTgaFile CPU exhaustion * CVE-2018-19865, Qt Virtual Keyboard: Qt Virtual Keyboard logs all key presses * CVE-2018-19869, Qt Svg: Fix crash when parsing malformed url reference More details can be obtained from the Qt annoucement [1]. [1] https://blog.qt.io/blog/2018/12/04/qt-5-11-3-released-important-security-updates/	2019-01-31 11:00:27 +01:00
averelld	1999d279ec	qt5: 5.11.0 -> 5.11.1 (#42351 ) This may be needed to unbreak a couple of builds such as nextcloud clients or rstudio: codereview.qt-project.org/#/c/232367	2018-07-05 02:37:48 +00:00
Bastian Köcher	b785d4813e	qt5: 5.10 -> 5.11 This is the first time since 5.9 that we also update `qtwebkit`. `qtwebkit` is not maintained by Qt anymore and thus, we switch to the community port as for example arch has done. To prevent pulling in single patches, we just stick to the latest git version.	2018-06-12 14:27:11 +02:00

Author

SHA1

Message

Date

Andreas Rammhold

2f5d37b77b

qt511: 5.11.1 -> 5.11.3

This fixes

 * CVE-2018-15518, Qt Base: “double free or corruption” in QXmlStreamReader
 * CVE-2018-19873, Qt Base: QBmpHandler segfault on malformed BMP file
 * CVE-2018-19870, Qt Base: Check for QImage allocation failure in qgifhandler
 * CVE-2018-19871, Qt Imageformats: QImage: QTgaFile CPU exhaustion
 * CVE-2018-19865, Qt Virtual Keyboard: Qt Virtual Keyboard logs all key presses
 * CVE-2018-19869, Qt Svg: Fix crash when parsing malformed url reference

More details can be obtained from the Qt annoucement [1].

[1] https://blog.qt.io/blog/2018/12/04/qt-5-11-3-released-important-security-updates/

2019-01-31 11:00:27 +01:00

averelld

1999d279ec

qt5: 5.11.0 -> 5.11.1 (#42351 )

This may be needed to unbreak a couple of builds such as nextcloud clients or rstudio: codereview.qt-project.org/#/c/232367

2018-07-05 02:37:48 +00:00

Bastian Köcher

b785d4813e

qt5: 5.10 -> 5.11

This is the first time since 5.9 that we also update `qtwebkit`.
`qtwebkit` is not maintained by Qt anymore and thus, we switch to the
community port as for example arch has done. To prevent pulling in
single patches, we just stick to the latest git version.

2018-06-12 14:27:11 +02:00

3 Commits