https://bugzilla.redhat.com/show_bug.cgi?id=1399691
Bug ID: 1399691
Summary: CVE-2016-9434 w3m: Null pointer dereference due to
incorrect form_int fid
Product: Security Response
Component: vulnerability
Keywords: Security
Severity: medium
Priority: medium
Assignee: security-response-team(a)redhat.com
Reporter: anemec(a)redhat.com
CC: eng-i18n-bugs(a)redhat.com,
i18n-bugs(a)lists.fedoraproject.org, pnemade(a)redhat.com
A null pointer dereference will occur in w3m while parsing maliciously crafted
input.
Upstream bug:
https://github.com/tats/w3m/issues/15
Upstream fix:
https://github.com/tats/w3m/commit/3d4eeda9ec0cb91e23bab7dc260d4c515119eb4b
References:
http://seclists.org/oss-sec/2016/q4/321
--
You are receiving this mail because:
You are on the CC list for the bug.