Updated w3m packages fix security vulnerability
Publication date: 13 Jan 2023Modification date: 13 Jan 2023
Type: security
Affected Mageia releases : 8
CVE: CVE-2022-38223
Description
There is an out-of-bounds write in checkType located in etc.c in w3m 0.5.3. It can be triggered by sending a crafted HTML file to the w3m binary. It allows an attacker to cause Denial of Service or possibly have unspecified other impact. (CVE-2022-38223)
References
SRPMS
8/core
- w3m-0.5.3-13.git20220429.1.mga8