tats

Top products

The 15 most recently published vulnerabilities affecting tats.

• CVE-2023-4255W3m: out-of-bounds write in function checktype() in etc.c (incomplete fix for cve-2022-38223)5.5Dec 21, 2023
• CVE-2023-38253W3m: out of bounds read in growbuf_to_str() at w3m/indep.c4.7Jul 14, 2023
• CVE-2023-38252W3m: out of bounds read in strnew_size() at w3m/str.c4.7Jul 14, 2023
• CVE-2022-38223There is an out-of-bounds write in checkType located in etc.c in w3m 0.5.3. It can be triggered by sending a crafted HTML file to the w3m binary. It allows an attacker to cause Denial of Service or...7.8Aug 15, 2022
• CVE-2018-6198w3m through 0.5.3 does not properly handle temporary files when the ~/.w3m directory is unwritable, which allows a local attacker to craft a symlink attack to overwrite arbitrary files.4.7Jan 25, 2018
• CVE-2018-6197w3m through 0.5.3 is prone to a NULL pointer dereference flaw in formUpdateBuffer in form.c.7.5Jan 25, 2018
• CVE-2018-6196w3m through 0.5.3 is prone to an infinite recursion flaw in HTMLlineproc0 because the feed_table_block_tag function in table.c does not prevent a negative indent value.7.5Jan 25, 2018
• CVE-2016-9436parsetagx.c in w3m before 0.5.3+git20161009 does not properly initialize values, which allows remote attackers to crash the application via a crafted html file, related to a <i> tag.6.5Jan 20, 2017
• CVE-2016-9435The HTMLtagproc1 function in file.c in w3m before 0.5.3+git20161009 does not properly initialize values, which allows remote attackers to crash the application via a crafted html file, related to <...6.5Jan 20, 2017
• CVE-2016-9633An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service (infinite loop and resource consumption) via a crafted HTML page.6.5Dec 12, 2016
• CVE-2016-9632An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service (global buffer overflow and crash) via a crafted HTML page.6.5Dec 12, 2016
• CVE-2016-9631An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted HTML page.6.5Dec 12, 2016
• CVE-2016-9630An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service (global buffer overflow and crash) via a crafted HTML page.6.5Dec 12, 2016
• CVE-2016-9629An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted HTML page.6.5Dec 12, 2016
• CVE-2016-9628An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted HTML page.6.5Dec 12, 2016