Lucene search

PRIOn knowledge basePRION:CVE-2023-34410

HistoryJun 05, 2023 - 3:15 a.m.

Code injection

2023-06-0503:15:00

PRIOn knowledge base

www.prio-n.com

certificate validation

tls

root chain

configured ca certificate

nvd

5.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

23.7%

JSON

An issue was discovered in Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.2. Certificate validation for TLS does not always consider whether the root of a chain is a configured CA certificate.

CPENameOperatorVersion
qtge6.0.0
qtlt6.2.9
qtlt5.15.15
qtge6.3.0
qtlt6.5.2

Name	Operator	Version
qt	ge	6.0.0
qt	lt	6.2.9
qt	lt	5.15.15
qt	ge	6.3.0
qt	lt	6.5.2

References

codereview.qt-project.org/c/qt/qtbase/+/477560

codereview.qt-project.org/c/qt/qtbase/+/480002

lists.debian.org/debian-lts-announce/2023/08/msg00028.html

lists.fedoraproject.org/archives/list/[email protected]/message/UE3IHQZCEUFVOPWG75V2HDKXNUZBB4FX/