Updated w3m packages fix security vulnerability
Publication date: 11 Jul 2018Modification date: 11 Jul 2018
Type: security
Affected Mageia releases : 5 , 6
CVE: CVE-2018-6196 , CVE-2018-6197 , CVE-2018-6198
Description
It was discovered that w3m incorrectly handled certain inputs. An attacker could possibly use this to cause a denial of service (CVE-2018-6196, CVE-2018-6197). It was discovered that w3m incorrectly handled temporary files. An attacker could possibly use this to overwrite arbitrary files (CVE-2018-6198).
References
SRPMS
6/core
- w3m-0.5.3-13.git20180520.0.mga6
5/core
- w3m-0.5.3-13.git20180520.0.mga5