CVE-2022-38223

NameCVE-2022-38223
DescriptionThere is an out-of-bounds write in checkType located in etc.c in w3m 0.5.3. It can be triggered by sending a crafted HTML file to the w3m binary. It allows an attacker to cause Denial of Service or possibly have unspecified other impact.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub advisories/code/issues, web search, more)
Debian Bugs1019599

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
w3m (PTS)buster0.5.3-37vulnerable
bullseye0.5.3+git20210102-6vulnerable
bookworm, sid0.5.3+git20230121-2fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
w3msource(unstable)0.5.3+git20230121-11019599

Notes

[bullseye] - w3m <no-dsa> (Minor issue)
[buster] - w3m <no-dsa> (Minor issue)
https://github.com/tats/w3m/issues/242
https://github.com/tats/w3m/commit/419ca82d57c72242817b55e2eaa4cdbf6916e7fa
Search for package or bug name: Reporting problems