February 2017 - i18n-bugs - Fedora Mailing-Lists

[Fedora-i18n-bugs] [Bug 1399691] New: CVE-2016-9434 w3m: Null pointer dereference due to incorrect form_int fid

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=1399691 Bug ID: 1399691 Summary: CVE-2016-9434 w3m: Null pointer dereference due to incorrect form_int fid Product: Security Response Component: vulnerability Keywords: Security Severity: medium Priority: medium Assignee: security-response-team(a)redhat.com Reporter: anemec(a)redhat.com CC: eng-i18n-bugs(a)redhat.com, i18n-bugs(a)lists.fedoraproject.org, pnemade(a)redhat.com A null pointer dereference will occur in w3m while parsing maliciously crafted input. Upstream bug: https://github.com/tats/w3m/issues/15 Upstream fix: https://github.com/tats/w3m/commit/3d4eeda9ec0cb91e23bab7dc260d4c515119eb4b References: http://seclists.org/oss-sec/2016/q4/321 -- You are receiving this mail because: You are on the CC list for the bug.

7 years, 1 month

2
7
0 / 0

[Fedora-i18n-bugs] [Bug 1399690] New: CVE-2016-9433 w3m: Segmentation fault when parsing iso2022 characters

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=1399690 Bug ID: 1399690 Summary: CVE-2016-9433 w3m: Segmentation fault when parsing iso2022 characters Product: Security Response Component: vulnerability Keywords: Security Severity: medium Priority: medium Assignee: security-response-team(a)redhat.com Reporter: anemec(a)redhat.com CC: eng-i18n-bugs(a)redhat.com, i18n-bugs(a)lists.fedoraproject.org, pnemade(a)redhat.com A segmentation fault will occur in w3m while parsing maliciously crafted input. Upstream bug: https://github.com/tats/w3m/issues/14 Upstream fix: https://github.com/tats/w3m/commit/9cf6926c5d947371dc9e44f32bc7a2fbfca5d469 References: http://seclists.org/oss-sec/2016/q4/321 -- You are receiving this mail because: You are on the CC list for the bug.

7 years, 1 month

2
5
0 / 0

[Fedora-i18n-bugs] [Bug 1399689] New: CVE-2016-9432 w3m: Segmentation fault due to bcopy with negative size

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=1399689 Bug ID: 1399689 Summary: CVE-2016-9432 w3m: Segmentation fault due to bcopy with negative size Product: Security Response Component: vulnerability Keywords: Security Severity: medium Priority: medium Assignee: security-response-team(a)redhat.com Reporter: anemec(a)redhat.com CC: eng-i18n-bugs(a)redhat.com, i18n-bugs(a)lists.fedoraproject.org, pnemade(a)redhat.com A segmentation fault will occur in w3m while parsing maliciously crafted input. Upstream bug: https://github.com/tats/w3m/issues/13 Upstream fixes: https://github.com/tats/w3m/commit/807e8b7fbffca6dcaf5db40e35f05d05c5cf02d3 https://github.com/tats/w3m/commit/7b88478227978a8d673b4dd0e05eee410cc33330 References: http://seclists.org/oss-sec/2016/q4/321 -- You are receiving this mail because: You are on the CC list for the bug.

7 years, 1 month

2
5
0 / 0

[Fedora-i18n-bugs] [Bug 1399687] New: CVE-2016-9431 w3m: Stack buffer overflow in deleteFrameSet()

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=1399687 Bug ID: 1399687 Summary: CVE-2016-9431 w3m: Stack buffer overflow in deleteFrameSet() Product: Security Response Component: vulnerability Keywords: Security Severity: medium Priority: medium Assignee: security-response-team(a)redhat.com Reporter: anemec(a)redhat.com CC: eng-i18n-bugs(a)redhat.com, i18n-bugs(a)lists.fedoraproject.org, pnemade(a)redhat.com A stack-based buffer overflow will occur in w3m while parsing maliciously crafted input. Upstream bug: https://github.com/tats/w3m/issues/10 Upstream fix: https://github.com/tats/w3m/commit/9f0bdcfdf061db3520bd1f112bdc5e83acdec4be References: http://seclists.org/oss-sec/2016/q4/321 -- You are receiving this mail because: You are on the CC list for the bug.

7 years, 1 month

2
6
0 / 0

[Fedora-i18n-bugs] [Bug 1399685] New: CVE-2016-9430 w3m: Segmentation fault with malformed input tag

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=1399685 Bug ID: 1399685 Summary: CVE-2016-9430 w3m: Segmentation fault with malformed input tag Product: Security Response Component: vulnerability Keywords: Security Severity: low Priority: low Assignee: security-response-team(a)redhat.com Reporter: anemec(a)redhat.com CC: eng-i18n-bugs(a)redhat.com, i18n-bugs(a)lists.fedoraproject.org, pnemade(a)redhat.com A segmentation fault will occur in w3m while parsing maliciously crafted input. Upstream bug: https://github.com/tats/w3m/issues/7 Upstream fix: https://github.com/tats/w3m/commit/59b91cd8e30c86f23476fa81ae005cabff49ebb6 References: http://seclists.org/oss-sec/2016/q4/321 -- You are receiving this mail because: You are on the CC list for the bug.

7 years, 1 month

2
5
0 / 0

[Fedora-i18n-bugs] [Bug 1399682] New: CVE-2016-9430 w3m: Global-buffer-overflow write in formUpdateBuffer

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=1399682 Bug ID: 1399682 Summary: CVE-2016-9430 w3m: Global-buffer-overflow write in formUpdateBuffer Product: Security Response Component: vulnerability Keywords: Security Severity: medium Priority: medium Assignee: security-response-team(a)redhat.com Reporter: anemec(a)redhat.com CC: eng-i18n-bugs(a)redhat.com, i18n-bugs(a)lists.fedoraproject.org, pnemade(a)redhat.com A global-buffer-overflow write will occur in w3m while parsing maliciously crafted input. Upstream bug: https://github.com/tats/w3m/issues/29 Upstream fix: https://github.com/tats/w3m/commit/d01de738f599441740437c6600dd5b1ae7155d27 References: http://seclists.org/oss-sec/2016/q4/321 -- You are receiving this mail because: You are on the CC list for the bug.

7 years, 1 month

2
6
0 / 0

[Fedora-i18n-bugs] [Bug 1399668] New: CVE-2016-9426 w3m: Heap corruption due to integer overflow in renderTable()

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=1399668 Bug ID: 1399668 Summary: CVE-2016-9426 w3m: Heap corruption due to integer overflow in renderTable() Product: Security Response Component: vulnerability Keywords: Security Severity: medium Priority: medium Assignee: security-response-team(a)redhat.com Reporter: anemec(a)redhat.com CC: eng-i18n-bugs(a)redhat.com, i18n-bugs(a)lists.fedoraproject.org, pnemade(a)redhat.com A heap corruption due to integer overflow will occur in w3m while parsing maliciously crafted input. Upstream bug: https://github.com/tats/w3m/issues/25 Upstream fix: https://github.com/tats/w3m/commit/b910f0966d9efea93ea8cef491000a83ffb49c5e References: http://seclists.org/oss-sec/2016/q4/321 -- You are receiving this mail because: You are on the CC list for the bug.

7 years, 1 month

2
5
0 / 0

[Fedora-i18n-bugs] [Bug 1399667] New: CVE-2016-9428 w3m: Out-of-bounds write in addMultirowsForm()

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=1399667 Bug ID: 1399667 Summary: CVE-2016-9428 w3m: Out-of-bounds write in addMultirowsForm() Product: Security Response Component: vulnerability Keywords: Security Severity: medium Priority: medium Assignee: security-response-team(a)redhat.com Reporter: anemec(a)redhat.com CC: eng-i18n-bugs(a)redhat.com, i18n-bugs(a)lists.fedoraproject.org, pnemade(a)redhat.com An out of bounds heap write will occur while parsing malicously crafted input, crashing the application or having other unspecified impact. Upstream bug: https://github.com/tats/w3m/issues/26 Upstream fix: https://github.com/tats/w3m/commit/4e464819dd360ffd3d58fa2a89216fe413cfcc74 References: http://seclists.org/oss-sec/2016/q4/321 -- You are receiving this mail because: You are on the CC list for the bug.

7 years, 1 month

2
5
0 / 0

[Fedora-i18n-bugs] [Bug 1399666] New: CVE-2016-9425 w3m: Segmentation fault due to write to lineBuf[-1] in addMultirowsForm

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=1399666 Bug ID: 1399666 Summary: CVE-2016-9425 w3m: Segmentation fault due to write to lineBuf[-1] in addMultirowsForm Product: Security Response Component: vulnerability Keywords: Security Severity: medium Priority: medium Assignee: security-response-team(a)redhat.com Reporter: anemec(a)redhat.com CC: eng-i18n-bugs(a)redhat.com, i18n-bugs(a)lists.fedoraproject.org, pnemade(a)redhat.com An out of bounds heap write will occur while parsing malicously crafted input, crashing the application or having other unspecified impact. Upstream bug: https://github.com/tats/w3m/issues/21 Upstream fix: https://github.com/tats/w3m/commit/4e464819dd360ffd3d58fa2a89216fe413cfcc74 References: http://seclists.org/oss-sec/2016/q4/321 -- You are receiving this mail because: You are on the CC list for the bug.

7 years, 1 month

2
5
0 / 0

[Fedora-i18n-bugs] [Bug 1399665] New: CVE-2016-9424 w3m: Out-of-bounds heap write due to negative array index

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=1399665 Bug ID: 1399665 Summary: CVE-2016-9424 w3m: Out-of-bounds heap write due to negative array index Product: Security Response Component: vulnerability Keywords: Security Severity: medium Priority: medium Assignee: security-response-team(a)redhat.com Reporter: anemec(a)redhat.com CC: eng-i18n-bugs(a)redhat.com, i18n-bugs(a)lists.fedoraproject.org, pnemade(a)redhat.com An out of bounds heap write will occur while parsing malicously crafted input, crashing the application or having other unspecified impact. Upstream bug: https://github.com/tats/w3m/issues/12 Upstream fix: https://github.com/tats/w3m/commit/a25fd09f74fb83499396935a96d63bb7cb8e2c58 References: http://seclists.org/oss-sec/2016/q4/321 -- You are receiving this mail because: You are on the CC list for the bug.

7 years, 1 month

2
7
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

i18n-bugs February 2017