CVE-2022-4292

A heap use-after-free flaw was found in Vim's didsetspelllang function of the spell.c file. This issue occurs because vim uses freed memory after SpellFileMissing autocmd uses bwipe. This could allows an attacker to trick a user into opening a specially crafted file, triggering a heap...

heap-use-after-free in function did_set_spelllang at spell

Description heap-use-after-free in function didsetspelllang at spell.c:2256:19 vim version shell git log -1 commit 03d6e6f42b0deeb02d52c8a48c14abe431370c1c HEAD - master, tag: v9.0.0820, origin/master, origin/HEAD...

Denial Of Service (DoS)

vim is vulnerable to denial of service. The vulnerabilty is in spelldumpcompl fucntion in spell.c' where an attacker can crash the application through the stack-based buffer overflow...

CVE-2022-2126

Out-of-bounds Read in GitHub repository vim/vim prior to 8.2...

CVE-2022-0943

Heap-based Buffer Overflow occurs in vim in GitHub repository vim/vim prior to 8.2.4563...

CVE-2022-0408

Stack-based Buffer Overflow in GitHub repository vim/vim prior to 8.2...