vulnerability

Amazon Linux AMI 2: CVE-2020-24742: Security patch for qt5-qtbase (ALAS-2020-1543)

Severity
7
CVSS
(AV:N/AC:M/Au:N/C:P/I:P/A:P)
Published
08/09/2021
Added
08/08/2023
Modified
08/08/2023

Description

An issue has been fixed in Qt versions 5.14.0 where QPluginLoader attempts to load plugins relative to the working directory, allowing attackers to execute arbitrary code via crafted files.

Solution(s)

amazon-linux-ami-2-upgrade-qt5-qtbaseamazon-linux-ami-2-upgrade-qt5-qtbase-commonamazon-linux-ami-2-upgrade-qt5-qtbase-debuginfoamazon-linux-ami-2-upgrade-qt5-qtbase-develamazon-linux-ami-2-upgrade-qt5-qtbase-docamazon-linux-ami-2-upgrade-qt5-qtbase-examplesamazon-linux-ami-2-upgrade-qt5-qtbase-guiamazon-linux-ami-2-upgrade-qt5-qtbase-mysqlamazon-linux-ami-2-upgrade-qt5-qtbase-odbcamazon-linux-ami-2-upgrade-qt5-qtbase-postgresqlamazon-linux-ami-2-upgrade-qt5-qtbase-staticamazon-linux-ami-2-upgrade-qt5-rpm-macros
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.