CVE-2023-4255

MEDIUM 5.5

W3m: out-of-bounds write in function checktype() in etc.c (incomplete fix for cve-2022-38223)

CVSS Score

5.5

EPSS Score

0.0%

EPSS Percentile

0th

An out-of-bounds write issue has been discovered in the backspace handling of the checkType() function in etc.c within the W3M application. This vulnerability is triggered by supplying a specially crafted HTML file to the w3m binary. Exploitation of this flaw could lead to application crashes, resulting in a denial of service condition.

CWE	CWE-787
Vendor	n/a
Product	w3m
Published	Dec 21, 2023
Last Updated	Feb 13, 2025

Stay Ahead of the Next One

Get instant alerts for n/a w3m

Be the first to know when new medium vulnerabilities affecting n/a w3m are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

Required

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Affected Versions

n/a / w3m

All versions affected

Fedora / Fedora

All versions affected

Fedora / Extra Packages for Enterprise Linux

All versions affected

References

NVD ↗ CVE.org ↗ EPSS Data ↗

bugzilla.redhat.com: https://bugzilla.redhat.com/show_bug.cgi?id=2255207 github.com: https://github.com/tats/w3m/commit/edc602651c506aeeb60544b55534dd1722a340d3 github.com: https://github.com/tats/w3m/issues/268 github.com: https://github.com/tats/w3m/pull/273 lists.fedoraproject.org: https://lists.fedoraproject.org/archives/list/[email protected]/message/AULOBQJLXE2KCT5UVQMKGEFL4GFIAOED/ lists.fedoraproject.org: https://lists.fedoraproject.org/archives/list/[email protected]/message/TODROGVCWZ435HQIZE6ARQC5LPQLIA5C/ lists.fedoraproject.org: https://lists.fedoraproject.org/archives/list/[email protected]/message/MKFZQUK7FPWWJQYICDZZ4YWIPUPQ2D3R/

Credits

Red Hat would like to thank [email protected] for reporting this issue.