[ubuntu/artful-security] w3m 0.5.3-34ubuntu0.1 (Accepted)

Leonidas S. Barbosa leo.barbosa at canonical.com
Thu Feb 1 13:33:09 UTC 2018


w3m (0.5.3-34ubuntu0.1) artful-security; urgency=medium

  * SECURITY UPDATE: Infinite recursion flaw in HTMLlineproc0
    - debian/patches/CVE-2018-6196.patch: prevent negative indent value
      in table.c.
    - CVE-2018-6196
  * SECURITY UPDATE: NULL pointer dereference flaw in formUpdateBuffer
    - debian/patches/CVE-2018-6197.patch: prevent invalid columnPos() call
      in form.c.
    - CVE-2018-6197
  * SECURITY UPDATE: does not properly handle temp files
    - debian/patches/CVE-218-6198.patch: make temp directory safely
      in config.h.dist, config.h.in, configure, configure.ac, main.c and rc.c.
    - CVE-2018-6198

Date: 2018-01-30 20:02:13.399910+00:00
Changed-By: leo.barbosa at canonical.com (Leonidas S. Barbosa)
https://launchpad.net/ubuntu/+source/w3m/0.5.3-34ubuntu0.1
-------------- next part --------------
Sorry, changesfile not available.


More information about the Artful-changes mailing list