Out-of-bounds Write

vim is vulnerable to out-of-bounds write. The vulnerability exists due to invalid memory access after diff buffer manipulations in 1diffmarkadjusttp function in diff.c...

Heap Use After Free in function ex_diffgetput

Description Heap Use After Free in function exdiffgetput at diff.c:2790 vim version git log commit 75417d960bd17a5b701cfb625b8864dacaf0cc39 HEAD - master, tag: v9.0.0001, origin/master, origin/HEAD POC ./afl/src/vim -u NONE -i NONE -n -m -X -Z -e -s -S ./pochuaf3s.dat -c :qa!...

Null pointer dereference in function diff_check

Description Null pointer dereference in function diffcheck at diff.c:1923 Version commit 8eba2bd291b347e3008aa9e565652d51ad638cfa HEAD, tag: v8.2.5151 Proof of Concept guest@elk:/trung/vim2/src$ valgrind ./vim -u NONE -i NONE -n -m -X -Z -e -s -S /home/guest/trung/poc/poc22 -c :qa! ==4357==...

CVE-2011-2711

CVE-2011-2711 affects cgit ≤0.9.0.2: XSS in print_fileinfo (ui-diff.c) allows remote authenticated users to inject script/HTML via the filename in a rename hint. Documented across multiple sources (SUSE/Fedora updates) indicating patches exist in cgit upgrades (e.g., OpenSUSE/SU-2011:0891-1, Fedo...