Skip to content. Skip to navigation

Trolltech

Sections

Home
Products and Services
Solutions
Developer Resources
Company
Downloads

Personal tools

You are here: Home → Company → News & Events → Press Releases → Trolltech releases security fix for Qt 4.3

Document Actions

Trolltech releases security fix for Qt 4.3

21 December - 2007 - Trolltech releases security fix for potential vulnerability in QSslSocket

Qt 4 versions 4.3.0, 4.3.1 and 4.3.2 have a potential vulnerability in QSslSocket, which might cause a certificate verification in SSL connections not to be performed. As a consequence, code using QSslSocket might be misled into thinking the certificate was verified correctly when it actually failed in one or more criteria. To solve the issue, apply the following patch. The current maintenance release of Qt (4.3.3) already has the patch included.

This vulnerability has been assigned CVE-2007-5965.

Trolltalk, an e-newsletter: Your mail address

This site conforms to the following standards:

Section 508
WCAG
Valid XHTML
Valid CSS
Usable in any browser