Security: Update regarding CVE-2023-43114

A recently reported issue on Windows with the GDI font engine which had been assigned the CVE id CVE-2023-43114 was reported as having been fixed in Qt 6.5.3. Unfortunately, this was incorrect as the patch did not end up in Qt 6.5.3. The patch available at https://download.qt.io/official_releases/qt/6.5/CVE-2023-43114-6.5.patch can be used on top of Qt 6.5.3. It has been integrated into the Qt 6.5.4 version already so this release will include the patch.


Blog Topics:

Comments