[Announce] Security: Update regarding CVE-2023-43114
List for announcements regarding Qt releases and development
announce at qt-project.org
Tue Oct 17 11:50:40 CEST 2023
Hi,
A recently reported issue on Windows with the GDI font engine which had been assigned the CVE id CVE-2023-43114 was reported as having been fixed in Qt 6.5.3. Unfortunately, this was incorrect as the patch did not end up in Qt 6.5.3. The patch available at https://download.qt.io/official_releases/qt/6.5/CVE-2023-43114-6.5.diff can be used on top of Qt 6.5.3.
Kind regards,
Andy
--
Andy Shaw
Director, Technical Customer Success
The Qt Company
More information about the Announce
mailing list