VYPR

rpm package

suse/w3m&distro=SUSE Linux Enterprise Server 12 SP3

pkg:rpm/suse/w3m&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3

Vulnerabilities (3)

  • CVE-2018-6198MedJan 25, 2018
    affected < 0.5.3.git20161120-161.3.4fixed 0.5.3.git20161120-161.3.4

    w3m through 0.5.3 does not properly handle temporary files when the ~/.w3m directory is unwritable, which allows a local attacker to craft a symlink attack to overwrite arbitrary files.

  • CVE-2018-6197HigJan 25, 2018
    affected < 0.5.3.git20161120-161.3.4fixed 0.5.3.git20161120-161.3.4

    w3m through 0.5.3 is prone to a NULL pointer dereference flaw in formUpdateBuffer in form.c.

  • CVE-2018-6196HigJan 25, 2018
    affected < 0.5.3.git20161120-161.3.4fixed 0.5.3.git20161120-161.3.4

    w3m through 0.5.3 is prone to an infinite recursion flaw in HTMLlineproc0 because the feed_table_block_tag function in table.c does not prevent a negative indent value.