CVE-2023-38253

Опубликовано: 14 июл. 2023

Источник: debian

EPSS Низкий

Описание

An out-of-bounds read flaw was found in w3m, in the growbuf_to_Str function in indep.c. This issue may allow an attacker to cause a denial of service through a crafted HTML file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
w3m	unfixed			package

Примечания

https://github.com/tats/w3m/issues/271
Crash in CLI tool, no security impact

EPSS

Процентиль: 6%

0.00023

Низкий

Связанные уязвимости

CVE-2023-38253

CVSS3: 4.7

ubuntu

больше 2 лет назад

An out-of-bounds read flaw was found in w3m, in the growbuf_to_Str function in indep.c. This issue may allow an attacker to cause a denial of service through a crafted HTML file.

CVE-2023-38253

CVSS3: 4.7

redhat

больше 2 лет назад

An out-of-bounds read flaw was found in w3m, in the growbuf_to_Str function in indep.c. This issue may allow an attacker to cause a denial of service through a crafted HTML file.

CVE-2023-38253

CVSS3: 4.7

nvd

больше 2 лет назад

An out-of-bounds read flaw was found in w3m, in the growbuf_to_Str function in indep.c. This issue may allow an attacker to cause a denial of service through a crafted HTML file.

GHSA-rrg6-f895-jq87

CVSS3: 4.7

github

больше 2 лет назад

An out-of-bounds read flaw was found in w3m, in the growbuf_to_Str function in indep.c. This issue may allow an attacker to cause a denial of service through a crafted HTML file.

SUSE-SU-2023:4439-1

suse-cvrf

около 2 лет назад

Security update for w3m

EPSS

Процентиль: 6%

0.00023

Низкий