[Interest] Glib vulnerability on QT 5.6.3 dependency
Thiago Macieira
thiago.macieira at intel.com
Thu Jan 7 12:41:33 CET 2021
On Thursday, 7 January 2021 03:15:41 -03 Ramakanth Kesireddy wrote:
> A vulnerability is found with the glib version 2.52.3 as
> https://nvd.nist.gov/vuln/detail/CVE-2019-12450.
>
> Is it recommended to upgrade the glib version to 2.8.3 or look for any
> patch with the existing version or ignore the CVE?
First, 52 > 8, so your question makes absolutely no sense.
Second, 2.58 is not the latest stable version of glib, 2.66 is. You should
consider upgrading to that.
Third, you should always upgrade your components to avoid security issues.
Don't let your system get too old. Like running Qt 5.6.
--
Thiago Macieira - thiago.macieira (AT) intel.com
Software Architect - Intel DPG Cloud Engineering
More information about the Interest
mailing list