[Secure-testing-team] Bug#844726: w3m: CVE-2016-9439: stack overflow
Salvatore Bonaccorso
carnil at debian.org
Fri Nov 18 13:35:28 UTC 2016
Source: w3m
Version: 0.5.3-8
Severity: normal
Tags: security upstream patch
Forwarded: https://github.com/tats/w3m/issues/20
Hi,
the following vulnerability was published for w3m, I'm aware that this
is as well already fixed in the upstream git master. This bug is just
to track the issue since unfixed in 0.5.3-30 so that we can record it
as fixed once enters unstable.
CVE-2016-9439[0]:
stack overflow
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2016-9439
Regards and thanks for your work!
Salvatore
p.s.: all of the recently posted issues which got CVEs, seem to not
warrant a DSA, but can be fixed via a point release. We have
marked them already as such in the security-tracker.
More information about the Secure-testing-team
mailing list