Ubuntu Update For Qt4-x11 USN-1628-1 Network Vulnerability

Summary

Ubuntu Update for Linux kernel vulnerabilities USN-1628-1

Solution

Please Install the Updated Packages.

Insight

Juliano Rizzo and Thai Duong discovered a flaw in the Transport Layer Security (TLS) protocol when it is used with data compression. If an attacker were able to perform a man-in-the-middle attack, this flaw could be exploited to view sensitive information. This update disables TLS data compression in Qt by default.

Affected

qt4-x11 on Ubuntu 12.04 LTS , Ubuntu 11.10 , Ubuntu 10.04 LTS

Severity

Classification

CVE CVE-2012-4929
CVSS Base Score: 2.6
AV:N/AC:H/Au:N/C:P/I:N/A:N

Related Vulnerabilities

Ubuntu Update for gdm-guest-session USN-1399-1
Ubuntu Update for linux-lts-quantal USN-1994-1
Ubuntu Update for libgcrypt11 USN-2339-2
Ubuntu Update for systemd-shim USN-2392-1
Ubuntu Update for linux USN-1275-1

Ubuntu Update for qt4-x11 USN-1628-1

Take action and discover your vulnerabilities