https://bugzilla.redhat.com/show_bug.cgi?id=1399740
Bug ID: 1399740
Summary: CVE-2016-9633 w3m: Memory exhaustion due to repeatedly
appending '<table>'
Product: Security Response
Component: vulnerability
Keywords: Security
Severity: medium
Priority: medium
Assignee: security-response-team(a)redhat.com
Reporter: anemec(a)redhat.com
CC: eng-i18n-bugs(a)redhat.com,
i18n-bugs(a)lists.fedoraproject.org, pnemade(a)redhat.com
A memory exhaustion will occur in w3m while parsing maliciously crafted input.
Upstream bug:
https://github.com/tats/w3m/issues/23
Upstream fix:
https://github.com/tats/w3m/commit/216722ed7282cec4338b177ea9ffdd39ad1b8c8c
References:
http://seclists.org/oss-sec/2016/q4/488
--
You are receiving this mail because:
You are on the CC list for the bug.