CVE-2016-9431

CVE-2016-9431

Name

CVE-2016-9431

Description

An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Infinite recursion vulnerability in w3m allows remote attackers to cause a denial of service via a crafted HTML page.

NVD Severity

unknown

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
Mailing List	http://www.openwall.com/lists/oss-security/2016/11/18/3
cve@mitre.org	http://www.securityfocus.com/bid/94407
Issue Tracking	https://github.com/tats/w3m/blob/master/ChangeLog
Issue Tracking	https://github.com/tats/w3m/issues/10
cve@mitre.org	https://security.gentoo.org/glsa/201701-08

Type

URI

Mailing List

http://www.openwall.com/lists/oss-security/2016/11/18/3

cve@mitre.org

http://www.securityfocus.com/bid/94407

Issue Tracking

https://github.com/tats/w3m/blob/master/ChangeLog

Issue Tracking

https://github.com/tats/w3m/issues/10

cve@mitre.org

https://security.gentoo.org/glsa/201701-08

CPE URI	Source package	Min version	Max version
`cpe:2.3:a:tats:w3m::::::::`	w3m	>= None	<= 0.5.3-30

CPE URI

Source package

Min version

Max version

cpe:2.3:a:tats:w3m:*:*:*:*:*:*:*:*

w3m

>= None

<= 0.5.3-30

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
w3m	edge-main	0.5.3_git20250505-r0	Celeste <cielesti@protonmail.com>	possibly vulnerable
w3m	edge-main	0.5.3_git20241203-r0	None	possibly vulnerable
w3m	edge-main	0.5.3.20230718-r0	None	possibly vulnerable
w3m	edge-main	0.5.3.20230121-r0	None	possibly vulnerable
w3m	edge-main	0.5.3.20180125-r0	None	possibly vulnerable
w3m	edge-community	0.5.3_git20250505-r0	Celeste <cielesti@protonmail.com>	possibly vulnerable
w3m	edge-community	0.5.3_git20241203-r0	Celeste <cielesti@protonmail.com>	possibly vulnerable
w3m	edge-community	0.5.3.20230718-r2	Celeste <cielesti@protonmail.com>	possibly vulnerable
w3m	edge-community	0.5.3.20230718-r0	ScrumpyJack <scrumpyjack@st.ilet.to>	possibly vulnerable
w3m	edge-community	0.5.3.20230121-r0	ScrumpyJack <scrumpyjack@st.ilet.to>	possibly vulnerable
w3m	edge-community	0.5.3.20180125-r0	None	possibly vulnerable
w3m	3.22-community	0.5.3_git20250505-r0	Celeste <cielesti@protonmail.com>	possibly vulnerable
w3m	3.22-community	0.5.3_git20241203-r0	None	possibly vulnerable
w3m	3.22-community	0.5.3.20230718-r2	Celeste <cielesti@protonmail.com>	possibly vulnerable
w3m	3.20-community	0.5.3.20230718-r1	Celeste <cielesti@protonmail.com>	possibly vulnerable
w3m	3.19-community	0.5.3.20230718-r1	Celeste <cielesti@protonmail.com>	possibly vulnerable

Source package

Branch

Version

Maintainer

Status

w3m

edge-main

0.5.3_git20250505-r0

Celeste <cielesti@protonmail.com>

possibly vulnerable

w3m

edge-main