27 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-0417
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap-based Buffer Overflow GitHub repository vim/vim prior to 8.2. CVE-2022-0417 Note that Nessus relies on the presence of the package as reported by the vendo...
Amazon Linux 2022 : vim-common, vim-data, vim-default-editor (ALAS2022-2022-025)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2022-2022-025 advisory. A flaw was found in vim. The vulnerability occurs due to a crash when recording and using Select mode and leads to an out-of-bounds read. This flaw allows an attacker to input a specially craft...
USN-5801-1: Vim vulnerabilities | Cloud Foundry
Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 18.04 Canonical Ubuntu 22.04 Description It was discovered that Vim makes illegal memory calls when pasting brackets in Ex mode. An attacker could possibly use this to crash Vim, access or modify memory, or execute arbitra...
Ubuntu: Security Advisory (USN-5801-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS : Vim vulnerabilities (USN-5801-1)
The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5801-1 advisory. It was discovered that Vim makes illegal memory calls when pasting brackets in Ex mode. An attacker could possibly use this to...
Huawei EulerOS: Security Advisory for vim (EulerOS-SA-2022-2594)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Amazon Linux 2022 : vim-common, vim-data, vim-default-editor (ALAS2022-2022-077)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2022-2022-077 advisory. A flaw was found in vim. The vulnerability occurs due to a crash when recording and using Select mode and leads to an out-of-bounds read. This flaw allows an attacker to input a specially craft...
Huawei EulerOS: Security Advisory for vim (EulerOS-SA-2022-2042)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 3053-1] vim security update
Debian LTS Advisory DLA-3053-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany June 20, 2022 https://wiki.debian.org/LTS Package : vim Version : 2:8.0.0197-4+deb9u7 CVE ID : CVE-2021-3903 CVE-2022-0417 CVE-2022-0943 CVE-2022-1720 CVE-2022-1851 CVE-2022-1898...
Debian DLA-3053-1 : vim - LTS security update
The remote Debian 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3053 advisory. Multiple security vulnerabilities have been discovered in vim, an enhanced vi editor. Buffer overflows, out-of-bounds reads and use-after-free may lead to a...
Amazon Linux 2 : vim, --advisory ALAS2-2022-1805 (ALAS-2022-1805)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2022-1805 advisory. A flaw was found in vim. The vulnerability occurs due to a crash when recording and using Select mode and leads to an out-of-bounds read. This flaw allows an attacker to input a specially crafted...
Huawei EulerOS: Security Advisory for vim (EulerOS-SA-2022-1655)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS Virtualization 2.9.1 : vim (EulerOS-SA-2022-1617)
According to the versions of the vim packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - vim is vulnerable to Out-of-bounds Read CVE-2021-4166, CVE-2021-4193 - vim is vulnerable to Use After Free CVE-2021-4192 - vim is...
CVE-2022-0417 affecting package vim for versions less than 8.2.4743-1
CVE-2022-0417 affecting package vim for versions less than 8.2.4743-1. An upgraded version of the package is available that resolves this issue...
EulerOS 2.0 SP8 : vim (EulerOS-SA-2022-1591)
According to the versions of the vim packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - vim is vulnerable to Heap-based Buffer Overflow CVE-2022-0213 - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. CVE-2022-0261...
EulerOS 2.0 SP9 : vim (EulerOS-SA-2022-1462)
According to the versions of the vim packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - vim is vulnerable to Out-of-bounds Read CVE-2021-4166, CVE-2021-4193 - vim is vulnerable to Use After Free CVE-2021-4192 - vim is vulnerable to...
Fedora: Security Advisory for vim (FEDORA-2022-48bf3cb1c4)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2022-0417 affecting package vim 8.2.4151-1
CVE-2022-0417 affecting package vim 8.2.4151-1. An upgraded version of the package is available that resolves this issue...
Fix of CVE: CVE-2022-0413, CVE-2022-0417, CVE-2022-0408, CVE-2022-0443
CVE-2022-0408: fix stack corruption when looking for spell suggestions - CVE-2022-0413: fix using freed memory when substitute with function call - CVE-2022-0417: fix illegal memory access caused by ':retab 0' - CVE-2022-0443: fix using freed memory with ':lopen' and ':bwipe'...
Fedora: Security Advisory for vim (FEDORA-2022-da2fb07efb)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...