Vulnerability CVE-2018-6198: Information
Description
w3m through 0.5.3 does not properly handle temporary files when the ~/.w3m directory is unwritable, which allows a local attacker to craft a symlink attack to overwrite arbitrary files.
Severity: MEDIUM (4.7) Vector: CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N
Fixed packages
Package name | Branch | Fixed in version | Version from repository | Errata ID | Task # | State |
---|---|---|---|---|---|---|
w3m | sisyphus | 0.5.3-alt3.git20200502 | 0.5.3-alt4.git20200502 | ALT-PU-2020-3081-1 | 260133 | Fixed |
w3m | p10 | 0.5.3-alt3.git20200502 | 0.5.3-alt4.git20200502 | ALT-PU-2020-3081-1 | 260133 | Fixed |
w3m | p9 | 0.5.3-alt3.git20200502 | 0.5.3-alt3.git20200502 | ALT-PU-2020-3099-2 | 260134 | Fixed |
w3m | c10f1 | 0.5.3-alt3.git20200502 | 0.5.3-alt4.git20200502 | ALT-PU-2020-3081-1 | 260133 | Fixed |
References to Advisories, Solutions, and Tools
Hyperlink | Resource |
---|---|
https://salsa.debian.org/debian/w3m/commit/18dcbadf2771cdb0c18509b14e4e73505b242753 |
|
https://github.com/tats/w3m/commit/18dcbadf2771cdb0c18509b14e4e73505b242753 |
|
https://bugs.debian.org/888097 |
|
102855 |
|
USN-3555-2 |
|
USN-3555-1 |
|
openSUSE-SU-2019:1142 |