19 matches found
CLSA-2026-1777944852 vim: Fix of 2 CVEs
CVE-2021-3984: in findstartbrace misc1.c, when a found '' lies inside a comment, restore the full cursor position line and column instead of only the line so subsequent C-indent lookups stay within the line bounds. - CVE-2022-2571: in inscomplgetexp edit.c, when CONTADDING is active, only advance...
Linux Distros Unpatched Vulnerability : CVE-2022-2571
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0101. CVE-2022-2571 Note that Nessus relies on the presence of the package as reported by t...
EulerOS Virtualization 3.0.6.0 : vim (EulerOS-SA-2023-2251)
According to the versions of the vim packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Buffer Over-read in function grabfilename in GitHub repository vim/vim prior to 8.2.4956. This vulnerability is capable of crashing...
USN-5995-1: Vim vulnerabilities | Cloud Foundry
Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 18.04 Canonical Ubuntu 22.04 Description It was discovered that Vim incorrectly handled memory when opening certain files. If an attacker could trick a user into opening a specially crafted file, it could cause Vim to cras...
Ubuntu: Security Advisory (USN-5995-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Amazon Linux 2 : vim (ALAS-2023-1975)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-1975 advisory. A heap buffer overflow vulnerability was found in vim's inscomplinfercasegettext function of the src/insexpand.c file. This flaw occurs when vim tries to access uninitialized memory when completi...
Important: vim
Issue Overview: A heap buffer overflow vulnerability was found in vim's inscomplinfercasegettext function of the src/insexpand.c file. This flaw occurs when vim tries to access uninitialized memory when completing a long line. This flaw allows an attacker to trick a user into opening a specially...
EulerOS Virtualization 2.9.1 : vim (EulerOS-SA-2023-1208)
According to the versions of the vim packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0101. CVE-2022-2571 - Out-of-bounds Write to API in GitHub...
Updated vim packages fix security vulnerability
Out-of-bounds Write in GitHub repository vim/vim prior to 8.2. CVE-2022-2000, CVE-2022-2129, CVE-2022-2210 Use After Free in GitHub repository vim/vim prior to 8.2. CVE-2022-2042 Buffer Over-read in GitHub repository vim/vim prior to 8.2. CVE-2022-2124, CVE-2022-2175 Heap-based Buffer Overflow in...
Huawei EulerOS: Security Advisory for vim (EulerOS-SA-2022-2783)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP9 : vim (EulerOS-SA-2022-2783)
According to the versions of the vim packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0101. CVE-2022-2571 - Undefined Behavior for Input to API in GitHub repository...
Huawei EulerOS: Security Advisory for vim (EulerOS-SA-2022-2703)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP10 : vim (EulerOS-SA-2022-2703)
According to the versions of the vim packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Out-of-bounds Read in GitHub repository vim/vim prior to 9.0. CVE-2022-2257 - Use After Free in GitHub repository vim/vim prior to 9.0. CVE-2022-22...
CVE-2022-2571 affecting package vim for versions less than 9.0.0325-1
CVE-2022-2571 affecting package vim for versions less than 9.0.0325-1. An upgraded version of the package is available that resolves this issue...
CVE-2022-2571 affecting package vim 9.0.0050-1
CVE-2022-2571 affecting package vim 9.0.0050-1. An upgraded version of the package is available that resolves this issue...
CVE-2022-2571
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0101...
CVE-2022-2571
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0101...
CVE-2022-2571 Heap-based Buffer Overflow in vim/vim
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0101...
CVE-2022-2571
CVE-2022-2571 describes a heap-based buffer overflow in the Vim project (vim/vim) prior to version 9.0.0101. Multiple connected sources confirm this vulnerability and note that an upgrade to Vim 9.0.0101 or newer resolves the issue (e.g., Alpine Linux CVE entry, Debian tracker, and Mariner adviso...