SUSE-SU-2023:4439-1 -- SLES w3mID: oval:org.secpod.oval:def:89051109 | Date: (C)2024-01-23 (M)2024-04-03 |
Class: PATCH | Family: unix |
This update for w3m fixes the following issues: * Update to version 0.5.3+git20230121 * CVE-2023-38252: Fixed an out-of-bounds write in function Strnew_size that allows attackers to cause a denial of service via a crafted HTML file. * CVE-2023-38253: Fixed an out-of-bounds write in function growbuf_to_Str that allows attackers to cause a denial of service via a crafted HTML file
Platform: |
SUSE Linux Enterprise Desktop 15 SP4 |
SUSE Linux Enterprise Desktop 15 SP5 |
SUSE Linux Enterprise Server 15 SP4 |
SUSE Linux Enterprise Server 15 SP5 |