Описание
Security update for w3m
This update for w3m fixes several issues.
These security issues were fixed:
- CVE-2018-6196: Prevent infinite recursion in HTMLlineproc0 caused by the feed_table_block_tag function which did not prevent a negative indent value (bsc#1077559)
- CVE-2018-6197: Prevent NULL pointer dereference in formUpdateBuffer (bsc#1077568)
- CVE-2018-6198: w3m did not properly handle temporary files when the ~/.w3m directory is unwritable, which allowed a local attacker to craft a symlink attack to overwrite arbitrary files (bsc#1077572)
Список пакетов
Image SLES12-SP5-Azure-SAP-BYOS
w3m-0.5.3.git20161120-161.3.4
Image SLES12-SP5-Azure-SAP-On-Demand
w3m-0.5.3.git20161120-161.3.4
Image SLES12-SP5-EC2-SAP-BYOS
w3m-0.5.3.git20161120-161.3.4
Image SLES12-SP5-EC2-SAP-On-Demand
w3m-0.5.3.git20161120-161.3.4
Image SLES12-SP5-GCE-SAP-BYOS
w3m-0.5.3.git20161120-161.3.4
Image SLES12-SP5-GCE-SAP-On-Demand
w3m-0.5.3.git20161120-161.3.4
Image SLES12-SP5-OCI-BYOS-SAP-BYOS
w3m-0.5.3.git20161120-161.3.4
Image SLES12-SP5-SAP-Azure-LI-BYOS-Production
w3m-0.5.3.git20161120-161.3.4
Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production
w3m-0.5.3.git20161120-161.3.4
SUSE Linux Enterprise Desktop 12 SP3
w3m-0.5.3.git20161120-161.3.4
SUSE Linux Enterprise Desktop 12 SP4
w3m-0.5.3.git20161120-161.3.4
SUSE Linux Enterprise Server 12 SP3
w3m-0.5.3.git20161120-161.3.4
SUSE Linux Enterprise Server 12 SP4
w3m-0.5.3.git20161120-161.3.4
SUSE Linux Enterprise Server for SAP Applications 12 SP3
w3m-0.5.3.git20161120-161.3.4
SUSE Linux Enterprise Server for SAP Applications 12 SP4
w3m-0.5.3.git20161120-161.3.4
Ссылки
- Link for SUSE-SU-2019:0776-1
- E-Mail link for SUSE-SU-2019:0776-1
- SUSE Security Ratings
- SUSE Bug 1077559
- SUSE Bug 1077568
- SUSE Bug 1077572
- SUSE CVE CVE-2018-6196 page
- SUSE CVE CVE-2018-6197 page
- SUSE CVE CVE-2018-6198 page
Описание
w3m through 0.5.3 is prone to an infinite recursion flaw in HTMLlineproc0 because the feed_table_block_tag function in table.c does not prevent a negative indent value.
Затронутые продукты
Image SLES12-SP5-Azure-SAP-BYOS:w3m-0.5.3.git20161120-161.3.4
Image SLES12-SP5-Azure-SAP-On-Demand:w3m-0.5.3.git20161120-161.3.4
Image SLES12-SP5-EC2-SAP-BYOS:w3m-0.5.3.git20161120-161.3.4
Image SLES12-SP5-EC2-SAP-On-Demand:w3m-0.5.3.git20161120-161.3.4
Ссылки
- CVE-2018-6196
- SUSE Bug 1077559
- SUSE Bug 1189667
Описание
w3m through 0.5.3 is prone to a NULL pointer dereference flaw in formUpdateBuffer in form.c.
Затронутые продукты
Image SLES12-SP5-Azure-SAP-BYOS:w3m-0.5.3.git20161120-161.3.4
Image SLES12-SP5-Azure-SAP-On-Demand:w3m-0.5.3.git20161120-161.3.4
Image SLES12-SP5-EC2-SAP-BYOS:w3m-0.5.3.git20161120-161.3.4
Image SLES12-SP5-EC2-SAP-On-Demand:w3m-0.5.3.git20161120-161.3.4
Ссылки
- CVE-2018-6197
- SUSE Bug 1077559
- SUSE Bug 1077568
- SUSE Bug 1189667
Описание
w3m through 0.5.3 does not properly handle temporary files when the ~/.w3m directory is unwritable, which allows a local attacker to craft a symlink attack to overwrite arbitrary files.
Затронутые продукты
Image SLES12-SP5-Azure-SAP-BYOS:w3m-0.5.3.git20161120-161.3.4
Image SLES12-SP5-Azure-SAP-On-Demand:w3m-0.5.3.git20161120-161.3.4
Image SLES12-SP5-EC2-SAP-BYOS:w3m-0.5.3.git20161120-161.3.4
Image SLES12-SP5-EC2-SAP-On-Demand:w3m-0.5.3.git20161120-161.3.4
Ссылки
- CVE-2018-6198
- SUSE Bug 1077559
- SUSE Bug 1077572