9 matches found
TencentOS Server 4: w3m (TSSA-2025:0165)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0165 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...
Fedora 40 : w3m (2024-aeb75f8b5b)
The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-aeb75f8b5b advisory. - Added upstream patch to fix out-of-bounds access due to multiple backspaces to address incomplete fix for CVE-2022-38223 2222775, 2222780, 2255207...
Fedora: Security Advisory (FEDORA-2024-aeb75f8b5b)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE: Security Advisory for w3m (SUSE-SU-2023:4439-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2023:4439-1 Security update for w3m
This update for w3m fixes the following issues: - Update to version 0.5.3+git20230121 - CVE-2023-38252: Fixed an out-of-bounds write in function Strnewsize that allows attackers to cause a denial of service via a crafted HTML file. bsc1213324 - CVE-2023-38253: Fixed an out-of-bounds write in...
CVE-2023-38252
An out-of-bounds read flaw was found in w3m, in the Strnewsize function in Str.c. This issue may allow an attacker to cause a denial of service through a crafted HTML file...
CVE-2023-38252 W3m: out of bounds read in strnew_size() at w3m/str.c
An out-of-bounds read flaw was found in w3m, in the Strnewsize function in Str.c. This issue may allow an attacker to cause a denial of service through a crafted HTML file...
CVE-2023-38252
CVE-2023-38252 : Affected software is the w3m pager/browser. The vulnerability is an out-of-bounds read in the Strnew_size function of Str.c, which can allow a crafted HTML file to trigger a denial of service. Multiple connected advisories confirm the issue and reference related CVEs (38253, 4255...
CVE-2023-38252
An out-of-bounds read flaw was found in w3m, in the Strnewsize function in Str.c. This issue may allow an attacker to cause a denial of service through a crafted HTML file...