Trolltech releases security fix for Qt 4.3

By harminka on 2007-12-28

Qt 4 versions 4.3.0, 4.3.1 and 4.3.2 have a potential vulnerability in QSslSocket, which might cause a certificate verification in SSL connections not to be performed.

As a consequence, code using QSslSocket might be misled into thinking the certificate was verified correctly when it actually failed in one or more criteria. To solve the issue, apply the following patch. The current maintenance release of Qt (4.3.3) already has the patch included.

This vulnerability has been assigned CVE-2007-5965.-Trolltech

Comment and add to the story without registration, but keep the comments meaningful please. Links are not accepted.

Add new comment

Editor's Choice


	'Abraham Lincoln, Vampire Hunter' swings a mean axe (trailer, [VIDEO])
	Bag Borrow or Steal membership is now free
	Movies for single people to feel good about being single
	To Do List for Small Businesses After A Tough 2011

Huliq's most popular


Whitney Houston should be left to rest in peace while death not suspicious
Jennifer Hudson's tribute to Whitney Houston earns standing ovation [VIDEO]
Guns N Roses 2012 Tour Dates and Kickoff Performance in NYC During Fashion Week (Video)
RHOA Phaedra struggles with Whitney Houston death and African Safari
Apple customers send quarter million petition to help iPad workers in China
'American Chopper': Trump advises Senior to cut the kids loose (VIDEO)
Pekingese the odds-on favorite to win 2012 Westminster Kennel Club Dog Show
Abu Qatada, terror suspect released but not deported
Police report Houston found underwater, unconscious; coroner denies reports of 'no drowning'