Lucene search

K
mageiaGentoo FoundationMGASA-2023-0314
HistoryNov 10, 2023 - 2:37 a.m.

Updated vim packages fix a security vulnerability

2023-11-1002:37:11
Gentoo Foundation
advisories.mageia.org
35
vim
packages
security vulnerability
integer overflow
history ex-command
unix

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

7.6

Confidence

Low

EPSS

0

Percentile

5.1%

The updated packages fix a security vulnerability: Integer overflow in :history Ex-Command in Vim < 9.0.2068.

OSVersionArchitecturePackageVersionFilename
Mageia8noarchvim< 9.0.2087-1vim-9.0.2087-1.mga8
Mageia9noarchvim< 9.0.2087-1vim-9.0.2087-1.mga9

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

7.6

Confidence

Low

EPSS

0

Percentile

5.1%