Your submission was sent successfully! Close

CVE-2016-9436

Published: 20 January 2017

parsetagx.c in w3m before 0.5.3+git20161009 does not properly initialize values, which allows remote attackers to crash the application via a crafted html file, related to a <i> tag.

Priority

Low

CVSS 3 base score: 6.5

Status

Package Release Status
w3m
Launchpad, Ubuntu, Debian
precise
Released (0.5.3-5ubuntu1.2)
trusty
Released (0.5.3-15ubuntu0.1)
upstream
Released (0.5.3-30)
xenial
Released (0.5.3-26ubuntu0.1)
yakkety Ignored
(reached end-of-life)
zesty Not vulnerable
(0.5.3-32)