1
PublicDateAtUSN: 2016-12-11
2
Candidate: CVE-2016-9431
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9431
6
https://github.com/tats/w3m/issues/10
7
http://www.openwall.com/lists/oss-security/2016/11/18/3
8
https://usn.ubuntu.com/usn/usn-3214-1
10
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31.
11
Infinite recursion vulnerability in w3m allows remote attackers to cause a
12
denial of service via a crafted HTML page.
15
sbeattie> same fix as for CVE-2016-9423
18
Discovered-by: Kuang-che Wu
22
debian: https://github.com/tats/w3m/commit/9f0bdcfdf061db3520bd1f112bdc5e83acdec4be
23
upstream_w3m: released (0.5.3-30)
24
precise_w3m: released (0.5.3-5ubuntu1.2)
25
precise/esm_w3m: released (0.5.3-5ubuntu1.2)
26
trusty_w3m: released (0.5.3-15ubuntu0.1)
27
vivid/stable-phone-overlay_w3m: DNE
28
vivid/ubuntu-core_w3m: DNE
29
xenial_w3m: released (0.5.3-26ubuntu0.1)
30
yakkety_w3m: ignored (reached end-of-life)
31
zesty_w3m: not-affected (0.5.3-32)
32
devel_w3m: not-affected (0.5.3-32)