3 matches found
CLSA-2026-1778602862 vim: Fix of 4 CVEs
CVE-2022-2175: fix invalid memory access in cmdlineinsertreg when using an expression on the command line; save/restore newcmdpos around the expression evaluation exgetln.c, upstream patch 8.2.5148; hunk 3 context adjusted for 8.2.2637 - CVE-2022-3256: fix use-after-free in movemark when an...
CLSA-2026-1777540266 vim: Fix of 10 CVEs
CVE-2022-2182: in doonecmd, after ";" sets curwin-wcursor.lnum to ea.line2, call checkcursor instead of checkcursorlnum so the column is validated too, and fall back to checkcursorcol when ea.line2 is zero, preventing read past end-of-line on ":0;'". - CVE-2022-2206: in checkshellsize, clamp...
Astra Linux – Vulnerability in Vim
Vim is an open-source, command-line text editor. A use-after-free vulnerability was discovered in Vim versions prior to 9.1.0764. When closing a buffer visible in a window, the BufWinLeave autocommand can lead to a use-after-free if this autocommand reopens the same buffer in a new split window...