13 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-2042
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use After Free in GitHub repository vim/vim prior to 8.2. CVE-2022-2042 Note that Nessus relies on the presence of the package as reported by the vendor...
Ubuntu: Security Advisory (USN-6557-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS Virtualization 3.0.2.0 : vim (EulerOS-SA-2023-1736)
According to the versions of the vim packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Out-of-bounds Read in vim/vim prior to 8.2. CVE-2022-0319 - Use After Free in GitHub repository vim/vim prior to 8.2. CVE-2022-0413,...
Mageia: Security Advisory (MGASA-2022-0430)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated vim packages fix security vulnerability
Out-of-bounds Write in GitHub repository vim/vim prior to 8.2. CVE-2022-2000, CVE-2022-2129, CVE-2022-2210 Use After Free in GitHub repository vim/vim prior to 8.2. CVE-2022-2042 Buffer Over-read in GitHub repository vim/vim prior to 8.2. CVE-2022-2124, CVE-2022-2175 Heap-based Buffer Overflow in...
Huawei EulerOS: Security Advisory for vim (EulerOS-SA-2022-2423)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP10 : vim (EulerOS-SA-2022-2423)
According to the versions of the vim packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Use After Free in GitHub repository vim/vim prior to 8.2. CVE-2022-1898, CVE-2022-2042 - Heap-based Buffer Overflow in GitHub repository vim/vim...
Amazon Linux 2022 : vim-common, vim-data, vim-default-editor (ALAS2022-2022-116)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2022-2022-116 advisory. A heap buffer over-read vulnerability was found in Vim's grabfilename function of the src/findfile.c file. This flaw occurs because the function reads after the NULL terminates the line with gf...
Huawei EulerOS: Security Advisory for vim (EulerOS-SA-2022-2282)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fixed CVE-2022-2042 in vim
CVE-2022-2042: fix using uninitialized value and freed memory in spell command...
CVE-2022-2042
Use After Free in GitHub repository vim/vim prior to 8.2...
CVE-2022-2042
Use After Free in GitHub repository vim/vim prior to 8.2...
CVE-2022-2042
CVE-2022-2042 is a real use-after-free vulnerability in Vim. The connected Astra Linux bulletins describe the flaw as a use-after-free in Vim’s skipwhite() in src/charset.c, leading to a crash or memory corruption if a crafted file is opened. No exploitation details are provided in the documents....