PublicDate: 2007-08-03 20:17:00 UTC
Candidate: CVE-2007-3388
References:
 https://ubuntu.com/security/notices/USN-495-1
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3388
Description:
 Multiple format string vulnerabilities in (1) qtextedit.cpp, (2)
 qdatatable.cpp, (3) qsqldatabase.cpp, (4) qsqlindex.cpp, (5)
 qsqlrecord.cpp, (6) qglobal.cpp, and (7) qsvgdevice.cpp in QTextEdit in
 Trolltech Qt 3 before 3.3.8 20070727 allow remote attackers to execute
 arbitrary code via format string specifiers in text used to compose an
 error message.
Ubuntu-Description:
Notes:
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:

Bugs:
dapper_qt4-x11: not-affected
edgy_qt4-x11: not-affected
feisty_qt4-x11: not-affected
devel_qt4-x11: not-affected
dapper_qt-x11-free: released (3.3.6-1ubuntu6.4)
edgy_qt-x11-free: released (3.3.6-3ubuntu3.3)
feisty_qt-x11-free: released (3.3.8really3.3.7-0ubuntu5.2)
devel_qt-x11-free: released (3.3.8really3.3.7-0ubuntu10)
upstream_qt-x11-free: needs-triage
upstream_qt4-x11: needs-triage