{"schema_version":"1.7.2","id":"OESA-2025-1142","modified":"2025-02-21T13:35:31Z","published":"2025-02-21T13:35:31Z","upstream":["CVE-2024-36048"],"summary":"qt6-qtnetworkauth security update","details":"Qt6 - NetworkAuth component\r\n\r\nSecurity Fix(es):\n\nQAbstractOAuth in Qt Network Authorization in Qt before 5.15.17, 6.x before 6.2.13, 6.3.x through 6.5.x before 6.5.6, and 6.6.x through 6.7.x before 6.7.1 uses only the time to seed the PRNG, which may result in guessable values.(CVE-2024-36048)","affected":[{"package":{"ecosystem":"openEuler:24.03-LTS","name":"qt6-qtnetworkauth","purl":"pkg:rpm/openEuler/qt6-qtnetworkauth\u0026distro=openEuler-24.03-LTS"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"6.5.2-2.oe2403"}]}],"ecosystem_specific":{"aarch64":["qt6-qtnetworkauth-6.5.2-2.oe2403.aarch64.rpm","qt6-qtnetworkauth-debuginfo-6.5.2-2.oe2403.aarch64.rpm","qt6-qtnetworkauth-debugsource-6.5.2-2.oe2403.aarch64.rpm","qt6-qtnetworkauth-devel-6.5.2-2.oe2403.aarch64.rpm","qt6-qtnetworkauth-examples-6.5.2-2.oe2403.aarch64.rpm"],"src":["qt6-qtnetworkauth-6.5.2-2.oe2403.src.rpm"],"x86_64":["qt6-qtnetworkauth-6.5.2-2.oe2403.x86_64.rpm","qt6-qtnetworkauth-debuginfo-6.5.2-2.oe2403.x86_64.rpm","qt6-qtnetworkauth-debugsource-6.5.2-2.oe2403.x86_64.rpm","qt6-qtnetworkauth-devel-6.5.2-2.oe2403.x86_64.rpm","qt6-qtnetworkauth-examples-6.5.2-2.oe2403.x86_64.rpm"]}}],"references":[{"type":"ADVISORY","url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-1142"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-36048"}],"database_specific":{"severity":"Critical"}}