CVE-2018-6196

Опубликовано: 25 янв. 2018

Источник: debian

EPSS Низкий

Описание

w3m through 0.5.3 is prone to an infinite recursion flaw in HTMLlineproc0 because the feed_table_block_tag function in table.c does not prevent a negative indent value.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
w3m	fixed	0.5.3-36		package
w3m	fixed	0.5.3-34+deb9u1	stretch	package
w3m	no-dsa		wheezy	package

Примечания

https://github.com/tats/w3m/issues/88
https://github.com/tats/w3m/commit/8354763b90490d4105695df52674d0fcef823e92

EPSS

Процентиль: 69%

0.00587

Низкий

Связанные уязвимости

CVE-2018-6196

CVSS3: 7.5

ubuntu

около 8 лет назад

w3m through 0.5.3 is prone to an infinite recursion flaw in HTMLlineproc0 because the feed_table_block_tag function in table.c does not prevent a negative indent value.

CVE-2018-6196

CVSS3: 3.3

redhat

около 8 лет назад

w3m through 0.5.3 is prone to an infinite recursion flaw in HTMLlineproc0 because the feed_table_block_tag function in table.c does not prevent a negative indent value.

CVE-2018-6196

CVSS3: 7.5

nvd

около 8 лет назад

w3m through 0.5.3 is prone to an infinite recursion flaw in HTMLlineproc0 because the feed_table_block_tag function in table.c does not prevent a negative indent value.

GHSA-rhw8-jfw3-7w97

CVSS3: 7.5

github

больше 3 лет назад

w3m through 0.5.3 is prone to an infinite recursion flaw in HTMLlineproc0 because the feed_table_block_tag function in table.c does not prevent a negative indent value.

openSUSE-SU-2019:1142-1

suse-cvrf

почти 7 лет назад

Security update for w3m

EPSS

Процентиль: 69%

0.00587

Низкий