-
Task
-
Resolution: Fixed
-
P1: Critical
-
None
-
All
-
6bb3171e3 (dev), 9b5313a98 (dev), c9a3952c9 (dev), 29dbd271a (6.10), 21c2b58d1 (6.10), 5277ae626 (6.10), f5a6f1bb5 (dev), aecb75073 (6.10), 73afc14dd (tqtc/lts-6.8), e0dcef310 (tqtc/lts-6.8), 8a129a900 (tqtc/lts-6.8), bca7d98df (tqtc/lts-6.8)
-
Foundation Sprint 129, Foundation Sprint 130, Foundation Sprint 131, Foundation Sprint 132, Foundation Sprint 133, Foundation Sprint 139, Foundation Sprint 140
Review all source code and header files in the Qt source code sub directory mentioned in the summary of this task. Marking this task as done implies that every file was reviewed and assessed for its criticality according to QUIP 23. Alternatively if no file was marked, it implies that no code section was deemed to be critical from a security perspective.
For more context information about this task please check the description of the epic associated with this task.
- resulted in
-
QTBUG-138475
Scan all Qt source for single-char assumptions on QLocale accessors
-
- Open
-
-
QTBUG-138484 QTextStream assumes single-character QLocale::{positive,negative}Sign()
-
- Closed
-
-
-
- Closed
-
| For Gerrit Dashboard: QTBUG-135194 | ||||||
|---|---|---|---|---|---|---|
| # | Subject | Branch | Project | Status | CR | V |
| 630557,7 | Mark QXmlStream{Reader,Writer} as security-critical | dev | qt/qtbase | Status: MERGED | +2 | 0 |
| 630611,8 | Mark QJson and QCbor classes as security-critical | dev | qt/qtbase | Status: MERGED | +2 | 0 |
| 641270,4 | Mark QDataStream as security-critical | dev | qt/qtbase | Status: MERGED | +2 | 0 |
| 641284,5 | Mark QXmlUtils as security-critical | dev | qt/qtbase | Status: MERGED | +2 | 0 |
| 647101,2 | Mark QXmlStream{Reader,Writer} as security-critical | 6.9 | qt/qtbase | Status: MERGED | +2 | 0 |
| 647294,2 | Mark QXmlStream{Reader,Writer} as security-critical | tqtc/lts-6.8 | qt/tqtc-qtbase | Status: MERGED | +2 | 0 |
| 653889,2 | Mark QDataStream as security-critical | 6.10 | qt/qtbase | Status: MERGED | +2 | 0 |
| 653983,2 | Mark QDataStream as security-critical | 6.9 | qt/qtbase | Status: MERGED | +2 | 0 |
| 654252,2 | Mark QDataStream as security-critical | tqtc/lts-6.8 | qt/tqtc-qtbase | Status: MERGED | +2 | 0 |
| 656144,5 | Mark QTextStream as security-critical | dev | qt/qtbase | Status: MERGED | +2 | 0 |
| 656329,2 | Mark QJson and QCbor classes as security-critical | 6.10 | qt/qtbase | Status: MERGED | +2 | 0 |
| 656495,2 | Mark QJson and QCbor classes as security-critical | 6.9 | qt/qtbase | Status: MERGED | +2 | 0 |
| 656569,2 | Mark QXmlUtils as security-critical | 6.10 | qt/qtbase | Status: MERGED | +2 | 0 |
| 656618,4 | Mark QJson and QCbor classes as security-critical | tqtc/lts-6.8 | qt/tqtc-qtbase | Status: MERGED | +2 | 0 |
| 656663,2 | Mark QXmlUtils as security-critical | 6.9 | qt/qtbase | Status: MERGED | +2 | 0 |
| 656769,2 | Mark QXmlUtils as security-critical | tqtc/lts-6.8 | qt/tqtc-qtbase | Status: MERGED | +2 | 0 |
| 656922,2 | Mark QTextStream as security-critical | 6.10 | qt/qtbase | Status: MERGED | +2 | 0 |
| 657026,2 | Mark QTextStream as security-critical | 6.9 | qt/qtbase | Status: MERGED | +2 | 0 |
| 657095,2 | Mark QTextStream as security-critical | tqtc/lts-6.8 | qt/tqtc-qtbase | Status: MERGED | +2 | 0 |
| 681626,2 | Mark qcbor{map,array}.cpp as security-critical | dev | qt/qtbase | Status: MERGED | +2 | 0 |
| 681627,2 | Mark qcborcommon_p.h as security-critical | dev | qt/qtbase | Status: MERGED | +2 | 0 |
| 681628,2 | Mark the remaining cbor/json headers as security-significant | dev | qt/qtbase | Status: MERGED | +2 | 0 |
| 681629,4 | Mark remaining files in src/corelib/serialization as security-insignificant | dev | qt/qtbase | Status: MERGED | +2 | 0 |
| 684015,2 | Mark qcbor{map,array}.cpp as security-critical | 6.10 | qt/qtbase | Status: MERGED | +2 | 0 |
| 684016,2 | Mark qcborcommon_p.h as security-critical | 6.10 | qt/qtbase | Status: MERGED | +2 | 0 |
| 684017,2 | Mark the remaining cbor/json headers as security-significant | 6.10 | qt/qtbase | Status: MERGED | +2 | 0 |
| 684528,3 | Mark qcbor{map,array}.cpp as security-critical | tqtc/lts-6.8 | qt/tqtc-qtbase | Status: MERGED | +2 | 0 |
| 684529,3 | Mark qcborcommon_p.h as security-critical | tqtc/lts-6.8 | qt/tqtc-qtbase | Status: MERGED | +2 | 0 |
| 684530,3 | Mark the remaining cbor/json headers as security-significant | tqtc/lts-6.8 | qt/tqtc-qtbase | Status: MERGED | +2 | 0 |
| 684566,2 | Mark remaining files in src/corelib/serialization as security-insignificant | 6.10 | qt/qtbase | Status: MERGED | +2 | 0 |
| 684641,3 | Mark remaining files in src/corelib/serialization as security-insignificant | tqtc/lts-6.8 | qt/tqtc-qtbase | Status: MERGED | +2 | 0 |