CVE-2022-38223
published 2022-08-15CVE-2022-38223: There is an out-of-bounds write in checkType located in etc.c in w3m 0.5.3. It can be triggered by sending a crafted HTML file to the w3m binary. It allows an…
PriorityP431high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
EPSS
0.44%
35.2th percentile
There is an out-of-bounds write in checkType located in etc.c in w3m 0.5.3. It can be triggered by sending a crafted HTML file to the w3m binary. It allows an attacker to cause Denial of Service or possibly have unspecified other impact.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | w3m | < w3m 0.5.3+git20230121-1 (bookworm) | w3m 0.5.3+git20230121-1 (bookworm) |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| tats | w3m | — | — |
| tats | w3m | >= 0 < 0.5.3+git20210102-6+deb11u1 | 0.5.3+git20210102-6+deb11u1 |
| tats | w3m | >= 0 < 0.5.3+git20230121-1 | 0.5.3+git20230121-1 |
| tats | w3m | >= 0 < 0.5.3+git20230121-1 | 0.5.3+git20230121-1 |
| tats | w3m | >= 0 < 0.5.3+git20230121-1 | 0.5.3+git20230121-1 |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
osv7.8HIGH
vendor_debian7.8HIGH
vendor_redhat7.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
w3m vulnerability
vendor_ubuntu·2023-01-10
CVE-2022-38223 w3m vulnerability
Title: w3m vulnerability
Summary: w3m could be made to crash or run programs as your login if it opened a
malicious website.
USN-5796-1 fixed a vulnerability in w3m. This update provides
the corresponding update for Ubuntu 14.04 ESM.
Original advisory details:
It was discovered that w3m incorrectly handled certain HTML files. A remote
attacker could use this issue to cause w3m to crash, resulting in a denial
of service, or possibly execute arbitrary code.
Instructions: In general, a standard system update will make all the necessary changes.
Ubuntu
w3m vulnerability
vendor_ubuntu·2023-01-09
CVE-2022-38223 w3m vulnerability
Title: w3m vulnerability
Summary: w3m could be made to crash or run programs as your login if it opened a
malicious website.
It was discovered that w3m incorrectly handled certain HTML files. A remote
attacker could use this issue to cause w3m to crash, resulting in a denial
of service, or possibly execute arbitrary code.
Instructions: In general, a standard system update will make all the necessary changes.
Red Hat
w3m: an out-of-bounds write in checkType located in etc.c in w3m
vendor_redhat·2022-08-15·CVSS 7.8
CVE-2022-38223 [HIGH] CWE-787 w3m: an out-of-bounds write in checkType located in etc.c in w3m
w3m: an out-of-bounds write in checkType located in etc.c in w3m
There is an out-of-bounds write in checkType located in etc.c in w3m 0.5.3. It can be triggered by sending a crafted HTML file to the w3m binary. It allows an attacker to cause Denial of Service or possibly have unspecified other impact.
An out-of-bounds write-in check type flaw was found in the etc.c function in w3m, triggered by sending a crafted HTML file to the w3m binary. This flaw allows an attacker to cause a denial of service and other possible impacts.
Package: w3m (Red Hat Enterprise Linux 6) - Out of support scope
Debian
CVE-2022-38223: w3m - There is an out-of-bounds write in checkType located in etc.c in w3m 0.5.3. It c...
vendor_debian·2022·CVSS 7.8
CVE-2022-38223 [HIGH] CVE-2022-38223: w3m - There is an out-of-bounds write in checkType located in etc.c in w3m 0.5.3. It c...
There is an out-of-bounds write in checkType located in etc.c in w3m 0.5.3. It can be triggered by sending a crafted HTML file to the w3m binary. It allows an attacker to cause Denial of Service or possibly have unspecified other impact.
Scope: local
bookworm: resolved (fixed in 0.5.3+git20230121-1)
bullseye: resolved (fixed in 0.5.3+git20210102-6+deb11u1)
forky: resolved (fixed in 0.5.3+git20230121-1)
sid: resolved (fixed in 0.5.3+git20230121-1)
trixie: resolved (fixed in 0.5.3+git20230121-1)
GHSA
GHSA-rf3p-g68h-h93f: There is an out-of-bounds write in checkType located in etc
ghsa_unreviewed·2022-08-16
CVE-2022-38223 [HIGH] CWE-787 GHSA-rf3p-g68h-h93f: There is an out-of-bounds write in checkType located in etc
There is an out-of-bounds write in checkType located in etc.c in w3m 0.5.3. It can be triggered by sending a crafted HTML file to the w3m binary. It allows an attacker to cause Denial of Service or possibly have unspecified other impact.
OSV
CVE-2022-38223: There is an out-of-bounds write in checkType located in etc
osv·2022-08-15·CVSS 7.8
CVE-2022-38223 [HIGH] CVE-2022-38223: There is an out-of-bounds write in checkType located in etc
There is an out-of-bounds write in checkType located in etc.c in w3m 0.5.3. It can be triggered by sending a crafted HTML file to the w3m binary. It allows an attacker to cause Denial of Service or possibly have unspecified other impact.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://github.com/tats/w3m/issues/242https://lists.debian.org/debian-lts-announce/2023/08/msg00030.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AULOBQJLXE2KCT5UVQMKGEFL4GFIAOED/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKESIFZMWIFMI6DRGMUYOTVKBOSEKDXZ/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKFZQUK7FPWWJQYICDZZ4YWIPUPQ2D3R/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NRRZMTLG3YT6U3PSGJOAMLDNLRF2EUOP/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TODROGVCWZ435HQIZE6ARQC5LPQLIA5C/https://github.com/tats/w3m/issues/242https://lists.debian.org/debian-lts-announce/2023/08/msg00030.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AULOBQJLXE2KCT5UVQMKGEFL4GFIAOED/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKESIFZMWIFMI6DRGMUYOTVKBOSEKDXZ/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKFZQUK7FPWWJQYICDZZ4YWIPUPQ2D3R/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NRRZMTLG3YT6U3PSGJOAMLDNLRF2EUOP/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TODROGVCWZ435HQIZE6ARQC5LPQLIA5C/https://lists.fedoraproject.org/archives/list/[email protected]/message/AULOBQJLXE2KCT5UVQMKGEFL4GFIAOED/https://lists.fedoraproject.org/archives/list/[email protected]/message/TODROGVCWZ435HQIZE6ARQC5LPQLIA5C/
2022-08-15
Published