First published: Wed Dec 05 2018(Updated: )
A keystroke logging issue was discovered in Virtual Keyboard in Qt 5.7.x, 5.8.x, 5.9.x, 5.10.x, and 5.11.x before 5.11.3.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Qt Qt | >=5.7.0<=5.7.1 | |
Qt Qt | >=5.9.0<=5.9.7 | |
Qt Qt | >=5.10.0<=5.10.1 | |
Qt Qt | >=5.11.0<5.11.3 | |
Qt Qt | =5.8.0 | |
openSUSE Leap | =15.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The CVE ID for this vulnerability is CVE-2018-19865.
The severity of CVE-2018-19865 is high with a CVSS score of 7.5.
Qt versions 5.7.x, 5.8.x, 5.9.x, 5.10.x, and 5.11.x before 5.11.3 are affected by CVE-2018-19865.
To fix the keystroke logging issue, update to Qt version 5.11.3 or later.
You can find more information about CVE-2018-19865 at the following references: [link1](http://blog.qt.io/blog/2018/12/04/qt-5-11-3-released-important-security-updates/), [link2](http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00085.html), [link3](http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00086.html).