There is an out-of-bounds write in checkType located in etc.c in w3m 0.5.3. It can be triggered by sending a crafted HTML file to the w3m binary. It allows an attacker to cause Denial of Service or possibly have unspecified other impact. https://github.com/tats/w3m/issues/242
Created w3m tracking bugs for this issue: Affects: epel-all [bug 2126271] Affects: fedora-all [bug 2126272]
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2022-38223