Source: w3m Version: 0.5.3-8 Severity: normal Tags: security upstream patch Forwarded: https://github.com/tats/w3m/issues/20
Hi, the following vulnerability was published for w3m, I'm aware that this is as well already fixed in the upstream git master. This bug is just to track the issue since unfixed in 0.5.3-30 so that we can record it as fixed once enters unstable. CVE-2016-9439[0]: stack overflow If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2016-9439 Regards and thanks for your work! Salvatore p.s.: all of the recently posted issues which got CVEs, seem to not warrant a DSA, but can be fixed via a point release. We have marked them already as such in the security-tracker.