mailing list archives
CVE Request: QT CRIME vulnerability
From: Seth Arnold <seth.arnold () canonical com>
Date: Tue, 2 Oct 2012 19:37:54 -0700
Hello Steve, all,
Qt has prepared a fix to the "CRIME" SSL/TLS attack by disabling
compression but I cannot find a CVE.
Some details can be found here
The git changes are as follows:
For older 4.x releases, the 4.7 patch is expected to work.
Some web links to the commits in question:
Please allocate a CVE for these fixes.
Description: Digital signature
- CVE Request: QT CRIME vulnerability Seth Arnold (Oct 03)