CVE-2023-4255

2024-01-0200:00:00

ubuntu.com

w3m

out-of-bounds write

denial of service

vulnerability

checktype function

backspace handling

html file

application crashes

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

25.8%

JSON

An out-of-bounds write issue has been discovered in the backspace handling
of the checkType() function in etc.c within the W3M application. This
vulnerability is triggered by supplying a specially crafted HTML file to
the w3m binary. Exploitation of this flaw could lead to application
crashes, resulting in a denial of service condition.

Bugs

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchw3m< 0.5.3-36ubuntu0.1+esm1UNKNOWN
ubuntu20.04noarchw3m< 0.5.3-37ubuntu0.2UNKNOWN
ubuntu22.04noarchw3m< 0.5.3+git20210102-6ubuntu0.2UNKNOWN
ubuntu23.04noarchw3m< 0.5.3+git20230121-2ubuntu0.23.04.1UNKNOWN
ubuntu23.10noarchw3m< 0.5.3+git20230121-2ubuntu0.23.10.1UNKNOWN
ubuntu24.04noarchw3m< 0.5.3+git20230121-2ubuntu1UNKNOWN
ubuntu14.04noarchw3m< 0.5.3-15ubuntu0.2+esm2UNKNOWN
ubuntu16.04noarchw3m< anyUNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	18.04	noarch	w3m	< 0.5.3-36ubuntu0.1+esm1	UNKNOWN
ubuntu	20.04	noarch	w3m	< 0.5.3-37ubuntu0.2	UNKNOWN
ubuntu	22.04	noarch	w3m	< 0.5.3+git20210102-6ubuntu0.2	UNKNOWN
ubuntu	23.04	noarch	w3m	< 0.5.3+git20230121-2ubuntu0.23.04.1	UNKNOWN
ubuntu	23.10	noarch	w3m	< 0.5.3+git20230121-2ubuntu0.23.10.1	UNKNOWN
ubuntu	24.04	noarch	w3m	< 0.5.3+git20230121-2ubuntu1	UNKNOWN
ubuntu	14.04	noarch	w3m	< 0.5.3-15ubuntu0.2+esm2	UNKNOWN
ubuntu	16.04	noarch	w3m	< any	UNKNOWN