{"id":"CVE-2016-9442","details":"An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause memory corruption in certain conditions via a crafted HTML page.","modified":"2026-02-22T01:13:24.875970Z","published":"2016-12-12T02:59:34.347Z","related":["MGASA-2018-0024","SUSE-SU-2016:3046-1","SUSE-SU-2016:3053-1","openSUSE-SU-2024:10235-1"],"references":[{"type":"WEB","url":"http://www.securityfocus.com/bid/94407"},{"type":"ADVISORY","url":"http://www.openwall.com/lists/oss-security/2016/11/18/3"},{"type":"ADVISORY","url":"https://security.gentoo.org/glsa/201701-08"},{"type":"REPORT","url":"https://github.com/tats/w3m/blob/master/ChangeLog"},{"type":"REPORT","url":"https://github.com/tats/w3m/commit/d43527cfa0dbb3ccefec4a6f7b32c1434739aa29"},{"type":"FIX","url":"https://github.com/tats/w3m/blob/master/ChangeLog"},{"type":"FIX","url":"https://github.com/tats/w3m/commit/d43527cfa0dbb3ccefec4a6f7b32c1434739aa29"},{"type":"ARTICLE","url":"http://www.openwall.com/lists/oss-security/2016/11/18/3"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/tats/w3m","events":[{"introduced":"0"},{"fixed":"d43527cfa0dbb3ccefec4a6f7b32c1434739aa29"}]}],"versions":["upstream/0.1.10+0.1.11pre+kokb23","upstream/0.3","upstream/0.5.1","upstream/0.5.2","upstream/0.5.3","v0.5.3+debian-19","v0.5.3+git20150203","v0.5.3+git20150509","v0.5.3+git20150623","v0.5.3+git20150720","v0.5.3+git20150811","v0.5.3+git20151010","v0.5.3+git20151119","v0.5.3+git20160228","v0.5.3+git20160511","v0.5.3+git20160718"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-9442.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}]}