SUSE CVE-2022-4141

Heap based buffer overflow in vim/vim 9.0.0946 and below by allowing an attacker to CTRL-W gf in the expression used in the RHS of the substitute command...

CLSA-2022-1670874212 vim: Fix of 2 CVEs

CVE-2022-4141: check for text locked in CTRL-W gf - CVE-2022-3520: check that the column does not become negative...

The vulnerability in the findfile.c component of the Vim text editor allows a hacker to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the findfile.c component of the Vim text editor is related to the improper handling of CTR-W f when the file name is absent. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its integrity, and cause service failures...

CLSA-2021-1640621325 Fix of CVE: CVE-2021-3973, CVE-2021-3974, CVE-2021-4019, CVE-2021-4069, CVE-2021-3984

CVE-2021-3974: fix using freed memory with regexp using a mark - CVE-2021-3984: fix illegal memory access when C-indenting - CVE-2021-3973: fix crash when using CTRL-W f without finding a file name - CVE-2021-4019: fix buffer overflow with long help argument - CVE-2021-4069: fix using freed...

PT-2021-7388 · Vim +6 · Vim +6

Name of the Vulnerable Software and Affected Versions: vim affected versions not specified Description: The issue is related to a Heap-based Buffer Overflow in the vim text editor. It is associated with incorrect handling of CTRL-W f when no file name is present. Exploitation of this issue allows...