Changeset 4d0615f1

Timestamp:

06/21/2021 06:12:00 PM (21 months ago)

Author:

Ken Moffat <ken@…>

Branches:

11.0, 11.1, 11.2, 11.3, ken/inkscape-core-mods, lazarus, plabs/python-mods, qt5new, trunk, upgradedb, xry111/intltool, xry111/soup3, xry111/test-20220226

Children:

e7cae3c

Parents:

1d372050

Message:

Patch a security vulnerability in QtSVG.

I remeasured Qt to accound for gcc-11.1.0.

Files:

• introduction/welcome/changelog.xml (modified) (1 diff)
• x/lib/qt5.xml (modified) (3 diffs)

introduction/welcome/changelog.xml

@@ -44 +44 @@
 
     <listitem>
+      <para>June 21st, 2021</para>
+      <itemizedlist>
+        <listitem>
+          <para>[ken] - Patch Qt-5.15.2 (security fix re qtsvg). Fixes
+          <ulink url="&blfs-ticket-root;15197">#15197</ulink>.</para>
+        </listitem>
+      </itemizedlist>
+    </listitem>
+
+    <listitem>
       <para>June 20th, 2021</para>
       <itemizedlist>

x/lib/qt5.xml

@@ -12 +12 @@
   <!ENTITY qt5-md5sum        "e1447db4f06c841d8947f0a6ce83a7b5">
   <!ENTITY qt5-size          "560 MB">
-  <!ENTITY qt5-buildsize     "14 GB (255 MB installed)">
+  <!ENTITY qt5-buildsize     "15 GB (257 MB installed)">
   <!ENTITY qt5-time          "22 SBU (using parallelism=4)">
 ]>
@@ -78 +78 @@
     </itemizedlist>
 
+    <bridgehead renderas="sect3">Additional Downloads</bridgehead>
+    <itemizedlist spacing="compact">
+      <listitem>
+        <para>
+          Required patch:
+          <ulink url="&patch-root;/qt-everywhere-src-&qt5-version;-CVE-2021-3481-1.patch"/>
+        </para>
+      </listitem>
+    </itemizedlist>
+
     <bridgehead renderas="sect3">Qt5 Dependencies</bridgehead>
 
@@ -247 +257 @@
 
     <para>
-      First fix some issues using gcc-11:
+      First apply a patch to fix an Out Of Bounds read in QtSVG:
+    </para>
+
+<screen><userinput remap="pre">patch -Np1 -i ../qt-everywhere-src-&qt5-version;-CVE-2021-3481-1.patch</userinput></screen>
+
+    <para>
+      Next fix some issues using gcc-11:
     </para>