VDB
GCVE-110-MAGEIA-2024-105
GCVE-110-MAGEIA-2024-105
Advisory Published
An out-of-bounds read flaw was found in w3m, in the Strnew_size function
in Str.c. This issue may allow an attacker to cause a denial of service
through a crafted HTML file. (CVE-2023-38252)
An out-of-bounds read flaw was found in w3m, in the growbuf_to_Str
function in indep.c. This issue may allow an attacker to cause a denial
of service through a crafted HTML file. (CVE-2023-38253)
An out-of-bounds write issue has been discovered in the backspace
handling of the checkType() function in etc.c within the W3M
application. This vulnerability is triggered by supplying a specially
crafted HTML file to the w3m binary. Exploitation of this flaw could
lead to application crashes, resulting in a denial of service condition.
(CVE-2023-4255)
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | w3m | 0 (affected), 0.5.3-13.git20230121.1.mga9 (unaffected), 0 (affected), 0.5.3-13.git20230121.1.mga9 (unaffected) | — |
| Mageia | nvidia470 | 0 (affected), 470.239.06-1.mga9.nonfree (unaffected) | — |
References
Browse GCVE Records
72,921 records in the GCVE database · Updated July 15, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.