Vim has heap-use-after-free at /src/charset.c:1770:12 in skipwhite

...

The vulnerability of the `skipwhite` function in the `charset.c` component of the Vim text editor allows a hacker to access confidential data, compromise its integrity, and cause service interruptions.

The vulnerability of the skipwhite function in the charset.c component of the Vim text editor is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and cause service interruptions...

The vulnerability of the skipwhite() function in the Vim text editor allows a hacker to execute arbitrary code.

The vulnerability of the skipwhite function rc/spell.c in the Vim text editor is related to the use of memory after it is freed. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

Vim 资源管理错误漏洞

Vim is a cross-platform text editor. A security vulnerability exists in versions prior to Vim 9.0.0046 that originates from a heap use-after-free in the function skipwhite, which can be exploited by an attacker to trigger a denial of service and potentially run code...

PT-2022-5218 · Vim +6 · Vim +6

Name of the Vulnerable Software and Affected Versions: Vim versions prior to 9.0.0046 Description: The issue is related to a use after free error in the skipwhite function of the charset.c component in the Vim text editor. This could allow a remote attacker to access sensitive data, compromise da...

CVE-2022-2042

A heap use-after-free vulnerability was found in Vim's skipwhite function of the src/charset.c file. This flaw occurs because of an uninitialized attribute value and freed memory in the spell command. This flaw allows an attacker to trick a user into opening a specially crafted file, triggering a...