Advisories ยป MGASA-2018-0312

Updated w3m packages fix security vulnerability

Publication date: 11 Jul 2018
Modification date: 11 Jul 2018
Type: security
Affected Mageia releases : 5 , 6
CVE: CVE-2018-6196 , CVE-2018-6197 , CVE-2018-6198

Description

It was discovered that w3m incorrectly handled certain inputs. An attacker
could possibly use this to cause a denial of service (CVE-2018-6196,
CVE-2018-6197).

It was discovered that w3m incorrectly handled temporary files. An attacker
could possibly use this to overwrite arbitrary files (CVE-2018-6198).
                

References

SRPMS

6/core

5/core