18 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-3016
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use After Free in GitHub repository vim/vim prior to 9.0.0286. CVE-2022-3016 Note that Nessus relies on the presence of the package as reported by the vendor...
Ubuntu 18.04 ESM / 20.04 LTS / 22.04 LTS : Vim vulnerabilities (USN-6302-1)
The remote Ubuntu 18.04 ESM / 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6302-1 advisory. It was discovered that Vim incorrectly handled memory when opening certain files. If an attacker could trick a user into opening ...
Important: vim
Issue Overview: A heap buffer overflow vulnerability was found in vim's inscomplinfercasegettext function of the src/insexpand.c file. This flaw occurs when vim tries to access uninitialized memory when completing a long line. This flaw allows an attacker to trick a user into opening a specially...
CBL Mariner 2.0 Security Update: vim (CVE-2022-3016)
The version of vim installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-3016 advisory. - Use After Free in GitHub repository vim/vim prior to 9.0.0286. CVE-2022-3016 Note that Nessus has not tested for...
EulerOS Virtualization 2.9.1 : vim (EulerOS-SA-2023-1208)
According to the versions of the vim packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0101. CVE-2022-2571 - Out-of-bounds Write to API in GitHub...
Updated vim packages fix security vulnerability
Out-of-bounds Write in GitHub repository vim/vim prior to 8.2. CVE-2022-2000, CVE-2022-2129, CVE-2022-2210 Use After Free in GitHub repository vim/vim prior to 8.2. CVE-2022-2042 Buffer Over-read in GitHub repository vim/vim prior to 8.2. CVE-2022-2124, CVE-2022-2175 Heap-based Buffer Overflow in...
Huawei EulerOS: Security Advisory for vim (EulerOS-SA-2022-2783)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for vim (EulerOS-SA-2022-2703)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP10 : vim (EulerOS-SA-2022-2703)
According to the versions of the vim packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Out-of-bounds Read in GitHub repository vim/vim prior to 9.0. CVE-2022-2257 - Use After Free in GitHub repository vim/vim prior to 9.0. CVE-2022-22...
Amazon Linux 2 : vim (ALAS-2022-1868)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2022-1868 advisory. A flaw was found in vim, which is vulnerable to an out-of-bounds read in the msgouttransspecial function. This flaw allows a specially crafted file to crash software or execute code when opened i...
CVE-2022-3016 affecting package vim 9.0.0181-1
CVE-2022-3016 affecting package vim 9.0.0181-1. An upgraded version of the package is available that resolves this issue...
CVE-2022-3016 affecting package vim for versions less than 9.0.0325-1
CVE-2022-3016 affecting package vim for versions less than 9.0.0325-1. An upgraded version of the package is available that resolves this issue...
Fedora: Security Advisory for vim (FEDORA-2022-b9edf60581)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2022-3016
A heap use-after-free vulnerability was found in vim's getnextvalidentry function of the src/quickfix.c file. The issue occurs because vim is using freed memory when the location list is changed in autocmd. This flaw allows an attacker to trick a user into opening a specially crafted file,...
Slackware: Security Advisory (SSA:2022-242-01)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2022-3016
Use After Free in GitHub repository vim/vim prior to 9.0.0286...
CVE-2022-3016
CVE-2022-3016 describes a Use-After-Free flaw in the Vim project, affecting vim/vim prior to version 9.0.0286. The connected documents corroborate this issue. Impact as stated: memory corruption that can crash Vim; exploitation potential (if present in the dataset) is not expanded beyond a crash/...
CVE-2022-3016 Use After Free in vim/vim
Use After Free in GitHub repository vim/vim prior to 9.0.0286...