-
Task
-
Resolution: Fixed
-
P1: Critical
-
None
-
-
cd4813a3c (dev), e6414e3ee (6.10), 046e6c570 (dev), 41c7f4852 (6.9), d15f3c781 (6.10), af2bc3b9f (6.9), 144f6cb7f (tqtc/lts-6.8), 286bb6c32 (dev), 57e247a5c (6.10), f25045f01 (6.9), bc90fbb51 (tqtc/lts-6.8), 0509f2003 (tqtc/lts-6.8)
-
Foundation Sprint 129, Foundation Sprint 130, Foundation Sprint 131, Foundation Sprint 132, Foundation Sprint 133
Review all source code and header files in the Qt source code sub directory mentioned in the summary of this task. Marking this task as done implies that every file was reviewed and assessed for its criticality according to QUIP 23. Alternatively if no file was marked, it implies that no code section was deemed to be critical from a security perspective.
For more context information about this task please check the description of the epic associated with this task.
- clones
-
QTBUG-135179 Review qtbase/src/concurrent
-
- Closed
-
- resulted in
-
QTBUG-138475 Scan all Qt source for single-char assumptions on QLocale accessors
-
- Open
-
-
QTBUG-138484 QTextStream assumes single-character QLocale::{positive,negative}Sign()
-
- Closed
-
-
QTBUG-138520 Harden QTextStream's internal APIs
-
- Closed
-
For Gerrit Dashboard: QTBUG-135194 | ||||||
---|---|---|---|---|---|---|
# | Subject | Branch | Project | Status | CR | V |
630557,7 | Mark QXmlStream{Reader,Writer} as security-critical | dev | qt/qtbase | Status: MERGED | +2 | 0 |
630611,8 | Mark QJson and QCbor classes as security-critical | dev | qt/qtbase | Status: MERGED | +2 | 0 |
641270,4 | Mark QDataStream as security-critical | dev | qt/qtbase | Status: MERGED | +2 | 0 |
641284,5 | Mark QXmlUtils as security-critical | dev | qt/qtbase | Status: MERGED | +2 | 0 |
647101,2 | Mark QXmlStream{Reader,Writer} as security-critical | 6.9 | qt/qtbase | Status: MERGED | +2 | 0 |
647294,2 | Mark QXmlStream{Reader,Writer} as security-critical | tqtc/lts-6.8 | qt/tqtc-qtbase | Status: MERGED | +2 | 0 |
653889,2 | Mark QDataStream as security-critical | 6.10 | qt/qtbase | Status: MERGED | +2 | 0 |
653983,2 | Mark QDataStream as security-critical | 6.9 | qt/qtbase | Status: MERGED | +2 | 0 |
654252,2 | Mark QDataStream as security-critical | tqtc/lts-6.8 | qt/tqtc-qtbase | Status: MERGED | +2 | 0 |
656144,5 | Mark QTextStream as security-critical | dev | qt/qtbase | Status: MERGED | +2 | 0 |
656329,2 | Mark QJson and QCbor classes as security-critical | 6.10 | qt/qtbase | Status: MERGED | +2 | 0 |
656495,2 | Mark QJson and QCbor classes as security-critical | 6.9 | qt/qtbase | Status: MERGED | +2 | 0 |
656569,2 | Mark QXmlUtils as security-critical | 6.10 | qt/qtbase | Status: MERGED | +2 | 0 |
656618,4 | Mark QJson and QCbor classes as security-critical | tqtc/lts-6.8 | qt/tqtc-qtbase | Status: MERGED | +2 | 0 |
656663,2 | Mark QXmlUtils as security-critical | 6.9 | qt/qtbase | Status: MERGED | +2 | 0 |
656769,2 | Mark QXmlUtils as security-critical | tqtc/lts-6.8 | qt/tqtc-qtbase | Status: MERGED | +2 | 0 |
656922,2 | Mark QTextStream as security-critical | 6.10 | qt/qtbase | Status: MERGED | +2 | 0 |
657026,2 | Mark QTextStream as security-critical | 6.9 | qt/qtbase | Status: MERGED | +2 | 0 |
657095,2 | Mark QTextStream as security-critical | tqtc/lts-6.8 | qt/tqtc-qtbase | Status: MERGED | +2 | 0 |