Ubuntu Security Notice 579-1 - It was discovered that QSslSocket did not properly verify SSL certificates. A remote attacker may be able to trick applications using QSslSocket into accepting invalid SSL certificates.
3579c00055d6f9b733cef375436b246bb5146f214d0a228e144cf30ba520a61e
Mandriva Linux Security Advisory - A potential vulnerability was discovered in Qt4 version 4.3.0 through 4.3.2 which may cause a certificate verification in SSL connections not to be performed. As a result, code that uses QSslSocket could be tricked into thinking that the certificate was verified correctly when it actually failed in one or more criteria.
3022a3ced70fc93e6c289a7b8e2a2f9d5dd84165b1ee2349be17190c63b1eb80