Security update for w3m SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2019:0776-1 Final 1 1 2019-03-27T10:39:30Z current 2019-03-27T10:39:30Z 2019-03-27T10:39:30Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for w3m This update for w3m fixes several issues. These security issues were fixed: - CVE-2018-6196: Prevent infinite recursion in HTMLlineproc0 caused by the feed_table_block_tag function which did not prevent a negative indent value (bsc#1077559) - CVE-2018-6197: Prevent NULL pointer dereference in formUpdateBuffer (bsc#1077568) - CVE-2018-6198: w3m did not properly handle temporary files when the ~/.w3m directory is unwritable, which allowed a local attacker to craft a symlink attack to overwrite arbitrary files (bsc#1077572) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Image SLES12-SP4-SAP-Azure-2019-776,Image SLES12-SP4-SAP-Azure-BYOS-2019-776,Image SLES12-SP4-SAP-Azure-LI-BYOS-Production-2019-776,Image SLES12-SP4-SAP-Azure-VLI-BYOS-Production-2019-776,Image SLES12-SP4-SAP-EC2-HVM-2019-776,Image SLES12-SP4-SAP-EC2-HVM-BYOS-2019-776,Image SLES12-SP4-SAP-GCE-2019-776,Image SLES12-SP4-SAP-GCE-BYOS-2019-776,Image SLES12-SP4-SAP-OCI-BYOS-2019-776,Image SLES12-SP5-Azure-SAP-BYOS-2019-776,Image SLES12-SP5-Azure-SAP-On-Demand-2019-776,Image SLES12-SP5-EC2-SAP-BYOS-2019-776,Image SLES12-SP5-EC2-SAP-On-Demand-2019-776,Image SLES12-SP5-GCE-SAP-BYOS-2019-776,Image SLES12-SP5-GCE-SAP-On-Demand-2019-776,Image SLES12-SP5-OCI-BYOS-SAP-BYOS-2019-776,Image SLES12-SP5-SAP-Azure-LI-BYOS-Production-2019-776,Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production-2019-776,SUSE-2019-776,SUSE-SLE-DESKTOP-12-SP3-2019-776,SUSE-SLE-DESKTOP-12-SP4-2019-776,SUSE-SLE-SERVER-12-SP3-2019-776,SUSE-SLE-SERVER-12-SP4-2019-776 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2019/suse-su-20190776-1/ Link for SUSE-SU-2019:0776-1 https://lists.suse.com/pipermail/sle-security-updates/2019-March/005254.html E-Mail link for SUSE-SU-2019:0776-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1077559 SUSE Bug 1077559 https://bugzilla.suse.com/1077568 SUSE Bug 1077568 https://bugzilla.suse.com/1077572 SUSE Bug 1077572 https://www.suse.com/security/cve/CVE-2018-6196/ SUSE CVE CVE-2018-6196 page https://www.suse.com/security/cve/CVE-2018-6197/ SUSE CVE CVE-2018-6197 page https://www.suse.com/security/cve/CVE-2018-6198/ SUSE CVE CVE-2018-6198 page Image SLES12-SP4-SAP-Azure Image SLES12-SP4-SAP-Azure-BYOS Image SLES12-SP4-SAP-Azure-LI-BYOS-Production Image SLES12-SP4-SAP-Azure-VLI-BYOS-Production Image SLES12-SP4-SAP-EC2-HVM Image SLES12-SP4-SAP-EC2-HVM-BYOS Image SLES12-SP4-SAP-GCE Image SLES12-SP4-SAP-GCE-BYOS Image SLES12-SP4-SAP-OCI-BYOS Image SLES12-SP5-Azure-SAP-BYOS Image SLES12-SP5-Azure-SAP-On-Demand Image SLES12-SP5-EC2-SAP-BYOS Image SLES12-SP5-EC2-SAP-On-Demand Image SLES12-SP5-GCE-SAP-BYOS Image SLES12-SP5-GCE-SAP-On-Demand Image SLES12-SP5-OCI-BYOS-SAP-BYOS Image SLES12-SP5-SAP-Azure-LI-BYOS-Production Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP4 w3m-0.5.3.git20161120-161.3.4 w3m-inline-image-0.5.3.git20161120-161.3.4 w3m-0.5.3.git20161120-161.3.4 as a component of Image SLES12-SP4-SAP-Azure w3m-0.5.3.git20161120-161.3.4 as a component of Image SLES12-SP4-SAP-Azure-BYOS w3m-0.5.3.git20161120-161.3.4 as a component of Image SLES12-SP4-SAP-Azure-LI-BYOS-Production w3m-0.5.3.git20161120-161.3.4 as a component of Image SLES12-SP4-SAP-Azure-VLI-BYOS-Production w3m-0.5.3.git20161120-161.3.4 as a component of Image SLES12-SP4-SAP-EC2-HVM w3m-0.5.3.git20161120-161.3.4 as a component of Image SLES12-SP4-SAP-EC2-HVM-BYOS w3m-0.5.3.git20161120-161.3.4 as a component of Image SLES12-SP4-SAP-GCE w3m-0.5.3.git20161120-161.3.4 as a component of Image SLES12-SP4-SAP-GCE-BYOS w3m-0.5.3.git20161120-161.3.4 as a component of Image SLES12-SP4-SAP-OCI-BYOS w3m-0.5.3.git20161120-161.3.4 as a component of Image SLES12-SP5-Azure-SAP-BYOS w3m-0.5.3.git20161120-161.3.4 as a component of Image SLES12-SP5-Azure-SAP-On-Demand w3m-0.5.3.git20161120-161.3.4 as a component of Image SLES12-SP5-EC2-SAP-BYOS w3m-0.5.3.git20161120-161.3.4 as a component of Image SLES12-SP5-EC2-SAP-On-Demand w3m-0.5.3.git20161120-161.3.4 as a component of Image SLES12-SP5-GCE-SAP-BYOS w3m-0.5.3.git20161120-161.3.4 as a component of Image SLES12-SP5-GCE-SAP-On-Demand w3m-0.5.3.git20161120-161.3.4 as a component of Image SLES12-SP5-OCI-BYOS-SAP-BYOS w3m-0.5.3.git20161120-161.3.4 as a component of Image SLES12-SP5-SAP-Azure-LI-BYOS-Production w3m-0.5.3.git20161120-161.3.4 as a component of Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production w3m-0.5.3.git20161120-161.3.4 as a component of SUSE Linux Enterprise Desktop 12 SP3 w3m-0.5.3.git20161120-161.3.4 as a component of SUSE Linux Enterprise Desktop 12 SP4 w3m-0.5.3.git20161120-161.3.4 as a component of SUSE Linux Enterprise Server 12 SP3 w3m-0.5.3.git20161120-161.3.4 as a component of SUSE Linux Enterprise Server 12 SP4 w3m-0.5.3.git20161120-161.3.4 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP3 w3m-0.5.3.git20161120-161.3.4 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 w3m through 0.5.3 is prone to an infinite recursion flaw in HTMLlineproc0 because the feed_table_block_tag function in table.c does not prevent a negative indent value. CVE-2018-6196 Image SLES12-SP4-SAP-Azure-BYOS:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP4-SAP-Azure-LI-BYOS-Production:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP4-SAP-Azure-VLI-BYOS-Production:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP4-SAP-Azure:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP4-SAP-EC2-HVM-BYOS:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP4-SAP-EC2-HVM:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP4-SAP-GCE-BYOS:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP4-SAP-GCE:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP4-SAP-OCI-BYOS:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP5-Azure-SAP-BYOS:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP5-Azure-SAP-On-Demand:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP5-EC2-SAP-BYOS:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP5-EC2-SAP-On-Demand:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP5-GCE-SAP-BYOS:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP5-GCE-SAP-On-Demand:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP5-OCI-BYOS-SAP-BYOS:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP5-SAP-Azure-LI-BYOS-Production:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production:w3m-0.5.3.git20161120-161.3.4 SUSE Linux Enterprise Desktop 12 SP3:w3m-0.5.3.git20161120-161.3.4 SUSE Linux Enterprise Desktop 12 SP4:w3m-0.5.3.git20161120-161.3.4 SUSE Linux Enterprise Server 12 SP3:w3m-0.5.3.git20161120-161.3.4 SUSE Linux Enterprise Server 12 SP4:w3m-0.5.3.git20161120-161.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP3:w3m-0.5.3.git20161120-161.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP4:w3m-0.5.3.git20161120-161.3.4 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20190776-1/ https://www.suse.com/security/cve/CVE-2018-6196.html CVE-2018-6196 https://bugzilla.suse.com/1077559 SUSE Bug 1077559 https://bugzilla.suse.com/1189667 SUSE Bug 1189667 w3m through 0.5.3 is prone to a NULL pointer dereference flaw in formUpdateBuffer in form.c. CVE-2018-6197 Image SLES12-SP4-SAP-Azure-BYOS:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP4-SAP-Azure-LI-BYOS-Production:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP4-SAP-Azure-VLI-BYOS-Production:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP4-SAP-Azure:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP4-SAP-EC2-HVM-BYOS:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP4-SAP-EC2-HVM:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP4-SAP-GCE-BYOS:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP4-SAP-GCE:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP4-SAP-OCI-BYOS:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP5-Azure-SAP-BYOS:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP5-Azure-SAP-On-Demand:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP5-EC2-SAP-BYOS:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP5-EC2-SAP-On-Demand:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP5-GCE-SAP-BYOS:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP5-GCE-SAP-On-Demand:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP5-OCI-BYOS-SAP-BYOS:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP5-SAP-Azure-LI-BYOS-Production:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production:w3m-0.5.3.git20161120-161.3.4 SUSE Linux Enterprise Desktop 12 SP3:w3m-0.5.3.git20161120-161.3.4 SUSE Linux Enterprise Desktop 12 SP4:w3m-0.5.3.git20161120-161.3.4 SUSE Linux Enterprise Server 12 SP3:w3m-0.5.3.git20161120-161.3.4 SUSE Linux Enterprise Server 12 SP4:w3m-0.5.3.git20161120-161.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP3:w3m-0.5.3.git20161120-161.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP4:w3m-0.5.3.git20161120-161.3.4 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20190776-1/ https://www.suse.com/security/cve/CVE-2018-6197.html CVE-2018-6197 https://bugzilla.suse.com/1077559 SUSE Bug 1077559 https://bugzilla.suse.com/1077568 SUSE Bug 1077568 https://bugzilla.suse.com/1189667 SUSE Bug 1189667 w3m through 0.5.3 does not properly handle temporary files when the ~/.w3m directory is unwritable, which allows a local attacker to craft a symlink attack to overwrite arbitrary files. CVE-2018-6198 Image SLES12-SP4-SAP-Azure-BYOS:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP4-SAP-Azure-LI-BYOS-Production:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP4-SAP-Azure-VLI-BYOS-Production:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP4-SAP-Azure:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP4-SAP-EC2-HVM-BYOS:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP4-SAP-EC2-HVM:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP4-SAP-GCE-BYOS:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP4-SAP-GCE:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP4-SAP-OCI-BYOS:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP5-Azure-SAP-BYOS:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP5-Azure-SAP-On-Demand:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP5-EC2-SAP-BYOS:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP5-EC2-SAP-On-Demand:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP5-GCE-SAP-BYOS:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP5-GCE-SAP-On-Demand:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP5-OCI-BYOS-SAP-BYOS:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP5-SAP-Azure-LI-BYOS-Production:w3m-0.5.3.git20161120-161.3.4 Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production:w3m-0.5.3.git20161120-161.3.4 SUSE Linux Enterprise Desktop 12 SP3:w3m-0.5.3.git20161120-161.3.4 SUSE Linux Enterprise Desktop 12 SP4:w3m-0.5.3.git20161120-161.3.4 SUSE Linux Enterprise Server 12 SP3:w3m-0.5.3.git20161120-161.3.4 SUSE Linux Enterprise Server 12 SP4:w3m-0.5.3.git20161120-161.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP3:w3m-0.5.3.git20161120-161.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP4:w3m-0.5.3.git20161120-161.3.4 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20190776-1/ https://www.suse.com/security/cve/CVE-2018-6198.html CVE-2018-6198 https://bugzilla.suse.com/1077559 SUSE Bug 1077559 https://bugzilla.suse.com/1077572 SUSE Bug 1077572