Debian 10261 Published by

A w3m security update has been released for Debian GNU/Linux 8 and 9 Extended LTS to address an out-of-bounds write.



ELA-931-1 w3m security update

Package : w3m
Version : 0.5.3-19+deb8u4 (jessie), 0.5.3-34+deb9u2 (stretch)

Related CVEs :
CVE-2022-38223

Han Zheng discovered an out-of-bounds write in w3m, a text based web
browser and pager. It can be triggered by sending a crafted HTML file
to the w3m binary. It allows an attacker to cause Denial of Service
(DoS) or possibly have unspecified other impact.

ELA-931-1 w3m security update