[Development] [Announce] Security: Update regarding CVE-2023-43114

List for announcements regarding Qt releases and development via Announce announce at qt-project.org
Tue Oct 17 11:50:40 CEST 2023


Hi,

A recently reported issue on Windows with the GDI font engine which had been assigned the CVE id CVE-2023-43114 was reported as having been fixed in Qt 6.5.3. Unfortunately, this was incorrect as the patch did not end up in Qt 6.5.3. The patch available at https://download.qt.io/official_releases/qt/6.5/CVE-2023-43114-6.5.diff can be used on top of Qt 6.5.3.

Kind regards,
Andy
--
Andy Shaw
Director, Technical Customer Success 
The Qt Company

_______________________________________________
Announce mailing list
Announce at qt-project.org
https://lists.qt-project.org/listinfo/announce


More information about the Development mailing list