{"id":"MGASA-2024-0197","summary":"Updated qtnetworkauth5 & qtnetworkauth6 packages fix security vulnerability","details":"QAbstractOAuth in Qt Network Authorization in Qt before 5.15.17, 6.x\nbefore 6.2.13, 6.3.x through 6.5.x before 6.5.6, and 6.6.x through 6.7.x\nbefore 6.7.1 uses only the time to seed the PRNG, which may result in\nguessable values.\n","modified":"2026-04-16T04:43:16.858440631Z","published":"2024-05-29T18:08:09Z","upstream":["CVE-2024-36048"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2024-0197.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=33247"},{"type":"WEB","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/55ZLZN7U7KUGQ7YANJIPQP7R7ESP6B3L/"}],"affected":[{"package":{"name":"qtnetworkauth5","ecosystem":"Mageia:9","purl":"pkg:rpm/mageia/qtnetworkauth5?arch=source&distro=mageia-9"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.15.7-1.1.mga9"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2024-0197.json"}},{"package":{"name":"qtnetworkauth6","ecosystem":"Mageia:9","purl":"pkg:rpm/mageia/qtnetworkauth6?arch=source&distro=mageia-9"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"6.4.1-1.1.mga9"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2024-0197.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}