[Fedora-i18n-bugs] [Bug 1399740] New: CVE-2016-9633 w3m: Memory exhaustion due to repeatedly appending '<table>'

Tuesday, 29 November 2016

https://bugzilla.redhat.com/show_bug.cgi?id=1399740

            Bug ID: 1399740
           Summary: CVE-2016-9633 w3m: Memory exhaustion due to repeatedly
                    appending '<table>'
           Product: Security Response
         Component: vulnerability
          Keywords: Security
          Severity: medium
          Priority: medium
          Assignee: security-response-team(a)redhat.com
          Reporter: anemec(a)redhat.com
                CC: eng-i18n-bugs(a)redhat.com,
                    i18n-bugs(a)lists.fedoraproject.org, pnemade(a)redhat.com

A memory exhaustion will occur in w3m while parsing maliciously crafted input.

Upstream bug:

https://github.com/tats/w3m/issues/23

Upstream fix:

https://github.com/tats/w3m/commit/216722ed7282cec4338b177ea9ffdd39ad1b8c8c

References:

http://seclists.org/oss-sec/2016/q4/488

-- 
You are receiving this mail because:
You are on the CC list for the bug.

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

[Fedora-i18n-bugs] [Bug 1399740] New: CVE-2016-9633 w3m: Memory exhaustion due to repeatedly appending '<table>'