VDB

GCVE-110-MAGEIA-2024-105

GCVE-110-MAGEIA-2024-105
Advisory Published
Vulnetix · Advisory published April 1, 2024
An out-of-bounds read flaw was found in w3m, in the Strnew_size function in Str.c. This issue may allow an attacker to cause a denial of service through a crafted HTML file. (CVE-2023-38252) An out-of-bounds read flaw was found in w3m, in the growbuf_to_Str function in indep.c. This issue may allow an attacker to cause a denial of service through a crafted HTML file. (CVE-2023-38253) An out-of-bounds write issue has been discovered in the backspace handling of the checkType() function in etc.c within the W3M application. This vulnerability is triggered by supplying a specially crafted HTML file to the w3m binary. Exploitation of this flaw could lead to application crashes, resulting in a denial of service condition. (CVE-2023-4255)

Affected Products

VendorProductVersionsPlatforms
Mageiaw3m0 (affected), 0.5.3-13.git20230121.1.mga9 (unaffected), 0 (affected), 0.5.3-13.git20230121.1.mga9 (unaffected)
Mageianvidia4700 (affected), 470.239.06-1.mga9.nonfree (unaffected)

Browse GCVE Records

72,921 records in the GCVE database · Updated July 15, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›