Lucene search

openSUSE: Security Advisory for vim (SUSE-SU-2023:4557-1)

openSUSE: Security Advisory for vim (SUSE-SU-2023:4557-1). Update to vim version 9.0 with patch level 2103 to fix multiple security vulnerabilities including heap-based buffer overflow, use-after-free, integer overflow, and segmentation faults

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 199
Tenable Nessus	SUSE SLED15 / SLES15 / openSUSE 15 Security Update : vim (SUSE-SU-2023:4557-1)	25 Nov 202300:00	–	nessus
Tenable Nessus	SUSE SLES12 Security Update : vim (SUSE-SU-2023:3942-1)	4 Oct 202300:00	–	nessus
Tenable Nessus	SUSE SLED15 / SLES15 / openSUSE 15 Security Update : vim (SUSE-SU-2023:3955-1)	4 Oct 202300:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP9 : vim (EulerOS-SA-2023-3320)	16 Jan 202400:00	–	nessus
Tenable Nessus	EulerOS Virtualization 2.9.1 : vim (EulerOS-SA-2024-1050)	16 Jan 202400:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP9 : vim (EulerOS-SA-2023-3352)	16 Jan 202400:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP11 : vim (EulerOS-SA-2023-3260)	16 Jan 202400:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP11 : vim (EulerOS-SA-2023-3288)	16 Jan 202400:00	–	nessus
Tenable Nessus	EulerOS Virtualization 2.9.0 : vim (EulerOS-SA-2024-1024)	16 Jan 202400:00	–	nessus
Tenable Nessus	Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.04 / 23.10 : Vim vulnerabilities (USN-6452-1)	25 Oct 202300:00	–	nessus

Source	Link
	www.4557-1
lists	www.lists.opensuse.org/archives/list/[email protected]/thread/JFIAKGXTGTII5V67YTOFAR6SOMWKBWSA

# SPDX-FileCopyrightText: 2024 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.833431");
  script_version("2025-02-26T05:38:41+0000");
  script_cve_id("CVE-2023-46246", "CVE-2023-4733", "CVE-2023-4734", "CVE-2023-4735", "CVE-2023-4738", "CVE-2023-4752", "CVE-2023-4781", "CVE-2023-5344", "CVE-2023-5441", "CVE-2023-5535");
  script_tag(name:"cvss_base", value:"7.2");
  script_tag(name:"cvss_base_vector", value:"AV:L/AC:L/Au:N/C:C/I:C/A:C");
  script_tag(name:"last_modification", value:"2025-02-26 05:38:41 +0000 (Wed, 26 Feb 2025)");
  script_tag(name:"severity_vector", value:"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
  script_tag(name:"severity_origin", value:"NVD");
  script_tag(name:"severity_date", value:"2023-10-16 14:16:54 +0000 (Mon, 16 Oct 2023)");
  script_tag(name:"creation_date", value:"2024-03-04 07:11:28 +0000 (Mon, 04 Mar 2024)");
  script_name("openSUSE: Security Advisory for vim (SUSE-SU-2023:4557-1)");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2024 Greenbone AG");
  script_family("SuSE Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/opensuse", "ssh/login/rpms", re:"ssh/login/release=openSUSELeap15\.5");

  script_xref(name:"Advisory-ID", value:"SUSE-SU-2023:4557-1");
  script_xref(name:"URL", value:"https://lists.opensuse.org/archives/list/[email protected]/thread/JFIAKGXTGTII5V67YTOFAR6SOMWKBWSA");

  script_tag(name:"summary", value:"The remote host is missing an update for the 'vim'
  package(s) announced via the SUSE-SU-2023:4557-1 advisory.");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");

  script_tag(name:"insight", value:"This update for vim fixes the following issues:

  Updated to version 9.0 with patch level 2103, fixes the following security
  problems

  * CVE-2023-5344: vim: Heap-based Buffer Overflow in vim prior to 9.0.1969
      (bsc#1215940)

  * CVE-2023-5441: vim: segfault in exmode when redrawing (bsc#1216001)

  * CVE-2023-5535: vim: use-after-free from buf_contents_changed() (bsc#1216167)

  * CVE-2023-46246: vim: Integer Overflow in :history command (bsc#1216696)

  * CVE-2023-4738: vim: heap-buffer-overflow in vim_regsub_both (bsc#1214922)

  * CVE-2023-4735: vim: OOB Write ops.c (bsc#1214924)

  * CVE-2023-4734: vim: segmentation fault in function f_fullcommand
      (bsc#1214925)

  * CVE-2023-4733: vim: use-after-free in function buflist_altfpos (bsc#1215004)

  * CVE-2023-4752: vim: Heap Use After Free in function ins_compl_get_exp
      (bsc#1215006)

  * CVE-2023-4781: vim: heap-buffer-overflow in function vim_regsub_both
      (bsc#1215033)

  ##");

  script_tag(name:"affected", value:"'vim' package(s) on openSUSE Leap 15.5.");

  script_tag(name:"solution", value:"Please install the updated package(s).");

  script_tag(name:"solution_type", value:"VendorFix");
  script_tag(name:"qod_type", value:"package");

  exit(0);
}

include("revisions-lib.inc");
include("pkg-lib-rpm.inc");

release = rpm_get_ssh_release();
if(!release)
  exit(0);

res = "";
report = "";

if(release == "openSUSELeap15.5") {

  if(!isnull(res = isrpmvuln(pkg:"vim", rpm:"vim~9.0.2103~150500.20.6.1", rls:"openSUSELeap15.5"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"gvim-debuginfo", rpm:"gvim-debuginfo~9.0.2103~150500.20.6.1", rls:"openSUSELeap15.5"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"vim-small", rpm:"vim-small~9.0.2103~150500.20.6.1", rls:"openSUSELeap15.5"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"gvim", rpm:"gvim~9.0.2103~150500.20.6.1", rls:"openSUSELeap15.5"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"vim-debugsource", rpm:"vim-debugsource~9.0.2103~150500.20.6.1", rls:"openSUSELeap15.5"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"vim-small-debuginfo", rpm:"vim-small-debuginfo~9.0.2103~150500.20.6.1", rls:"openSUSELeap15.5"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"vim-debuginfo", rpm:"vim-debuginfo~9.0.2103~150500.20.6.1", rls:"openSUSELeap15.5"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"vim-data", rpm:"vim-data~9.0.2103~150500.20.6.1", rls:"openSUSELeap15.5"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"vim-data-common", rpm:"vim-data-common~9.0.2103~150500.20.6.1", rls:"openSUSELeap15.5"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"vim", rpm:"vim~9.0.2103~150500.20.6.1", rls:"openSUSELeap15.5"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"gvim-debuginfo", rpm:"gvim-debuginfo~9.0.2103~150500.20.6.1", rls:"openSUSELeap15.5"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"vim-small", rpm:"vim-small~9.0.2103~150500.20.6.1", rls:"openSUSELeap15.5"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"gvim", rpm:"gvim~9.0.2103~150500.20.6.1", rls:"openSUSELeap15.5"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"vim-debugsource", rpm:"vim-debugsource~9.0.2103~150500.20.6.1", rls:"openSUSELeap15.5"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"vim-small-debuginfo", rpm:"vim-small-debuginfo~9.0.2103~150500.20.6.1", rls:"openSUSELeap15.5"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"vim-debuginfo", rpm:"vim-debuginfo~9.0.2103~150500.20.6.1", rls:"openSUSELeap15.5"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"vim-data", rpm:"vim-data~9.0.2103~150500.20.6.1", rls:"openSUSELeap15.5"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"vim-data-common", rpm:"vim-data-common~9.0.2103~150500.20.6.1", rls:"openSUSELeap15.5"))) {
    report += res;
  }

  if(report != "") {
    security_message(data:report);
  } else if(__pkg_match) {
    exit(99);
  }
  exit(0);
}

exit(0);

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

04 Mar 2024 00:00Current

6.9Medium risk

Vulners AI Score6.9

CVSS37.8

EPSS0.00062

SSVC