The QSslSocket::sslErrors function in Qt prior to 4.6.5, 4.7.x prior to 4.7.6, 4.8.x prior to 4.8.5, when using certain versions of openSSL, uses an "incompatible structure layout" that can read memory from the wrong location, which causes Qt to report an incorrect error when certificate validation fails and might cause users to make unsafe security decisions to accept a certificate.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
qt qt 4.6.0 |
||
qt qt 4.6.3 |
||
qt qt 4.6.4 |
||
qt qt 4.6.1 |
||
qt qt 4.6.2 |
||
qt qt |
||
qt qt 4.7.2 |
||
qt qt 4.7.3 |
||
qt qt 4.7.0 |
||
qt qt 4.7.1 |
||
qt qt 4.7.5 |
||
qt qt 4.7.4 |
||
qt qt 4.7.6 |
||
qt qt 4.8.2 |
||
qt qt 4.8.3 |
||
qt qt 4.8.0 |
||
qt qt 4.8.1 |
||
qt qt 4.8.4 |
||
canonical ubuntu linux 11.10 |
||
canonical ubuntu linux 12.10 |
||
canonical ubuntu linux 12.04 |
||
opensuse opensuse 11.4 |
||
opensuse opensuse 12.2 |
||
canonical ubuntu linux 10.04 |
Vulmon