Closed iskindar closed 1 year ago
Affected version :
Not Affected version: < 0.5.3+git20220429-1
Assigned CVE-2023-38253 for this issue. If you wish to dispute please open a ticket here: https://access.redhat.com/security/team/contact
Prevented with https://github.com/tats/w3m/pull/273
Hello, I found a out-of-bound read in w3m, function growbuf_to_Str , indep.c:61 while testing my new fuzzer.
Steps to reproduce
Platform
ASAN
POC
poc2.zip