Re: [Development] WebSocket Module [CVE-2018-21035]

Hi, I forwarded my message to the security team on Monday (secur...@qt-project.org ). I didn't get any answer except this: Your mail to 'Security' with the subject Fwd: Re: [Development] WebSocket Module [CVE-2018-21035] Is being held until the list modera

[Development] WebSocket Module [CVE-2018-21035]

Hi, I provided a patch for CVE-2018-21035, present in Qt5 WebSocket Module. However apparently since the patch adds a new API it cannot go into Qt5. This vulnerability makes the Qt5 WebSocket module totally unusable for use in non-trusted environment (like Internet). Is there anything to do a