How to get version number of external libraries used in Qt
-
Hello,
I am using using prebuilt binaries of Qt5.12.3 for Windows for building our application
I was scanning my tool in a binary analysis tool to scan for vulnerabilities and getting the CVE scores for our application.
However, the tool could not detect the version of libraries used in Qt5Core such as freetype, libpng, pcre2 and others and ended up showing me a lot of critical vulnerabilities.
Is there any way I can get the version of the libraries used for building Qt so that I put the correct version number of freetype, libpng etc and then rescan to get correct vulnerability count?Now, ideally I am supposed to build my application using the latest Qt version to have low number of vulnerabilities, but I wanted to know if there was a way to get the version number of libraries used.
Any help in this direction would be useful.
Thanks! -
Open docs for your Qt version and search for library name. For example:
- https://doc.qt.io/qt-5/qtgui-attribution-freetype.html
- https://doc.qt.io/qt-5/qtgui-attribution-libpng.html
- https://doc.qt.io/qt-5/qtsql-attribution-sqlite.html
(links show most up-to-date state, so Qt 5.15.x)
-
Hello,
I am using using prebuilt binaries of Qt5.12.3 for Windows for building our application
I was scanning my tool in a binary analysis tool to scan for vulnerabilities and getting the CVE scores for our application.
However, the tool could not detect the version of libraries used in Qt5Core such as freetype, libpng, pcre2 and others and ended up showing me a lot of critical vulnerabilities.
Is there any way I can get the version of the libraries used for building Qt so that I put the correct version number of freetype, libpng etc and then rescan to get correct vulnerability count?Now, ideally I am supposed to build my application using the latest Qt version to have low number of vulnerabilities, but I wanted to know if there was a way to get the version number of libraries used.
Any help in this direction would be useful.
Thanks!
