A null pointer dereference will occur in w3m while parsing maliciously crafted input. Upstream bug: https://github.com/tats/w3m/issues/35 Upstream fix: https://github.com/tats/w3m/commit/e2c7ecec6f9b730ad3c9bf8c8df9212970f183d7 References: http://seclists.org/oss-sec/2016/q4/488
Created w3m tracking bugs for this issue: Affects: fedora-all [bug 1401423] Affects: epel-7 [bug 1401424]