Published: 25/01/2018 Updated: 29/12/2023

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

w3m up to and including 0.5.3 is prone to an infinite recursion flaw in HTMLlineproc0 because the feed_table_block_tag function in table.c does not prevent a negative indent value.

Vulnerable Product	Search on Vulmon	Subscribe to Product
tats w3m
canonical ubuntu linux 16.04
canonical ubuntu linux 14.04
canonical ubuntu linux 12.04
canonical ubuntu linux 17.10

Debian Bug report logs - #888097 w3m: CVE-2018-6198: insecure temporary files creation when ~/w3m is unwritable Package: w3m; Maintainer for w3m is Tatsuya Kinoshita <tats@debianorg>; Source for w3m is src:w3m (PTS, buildd, popcon) Reported by: Tatsuya Kinoshita <tats@debianorg> Date: Tue, 23 Jan 2018 10:18:02 UTC ...

Several security issues were fixed in w3m ...

w3m through 053 is prone to an infinite recursion flaw in HTMLlineproc0 because the feed_table_block_tag function in tablec does not prevent a negative indent value ...

CWE-835 https://github.com/tats/w3m/issues/88 https://github.com/tats/w3m/commit/8354763b90490d4105695df52674d0fcef823e92 https://usn.ubuntu.com/3555-2/https://usn.ubuntu.com/3555-1/http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00028.html https://lists.debian.org/debian-lts-announce/2020/04/msg00025.html https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=888097 https://usn.ubuntu.com/3555-2/https://nvd.nist.gov

CVE-2018-6196

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect