The vulnerability of the utf_head_off() function in the Vim text editor allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the utfheadoff function in the Vim text editor is related to the lack of checks for buffer size and reading beyond the memory limit. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...

Buffer Over-read in function utf_head_off

Description Buffer Over-read in function utfheadoff at vim/src/mbyte.c:3872 vim version git log commit 249e1b903a9c0460d618f6dcc59aeb8c03b24b20 grafted, HEAD - master, tag: v9.0.0213, origin/master, origin/HEAD Proof of Concept ./vim/src/vim -u NONE -X -Z -e -s -S poc3hbo.dat -c :qa!...

Heap-based Buffer Overflow in function utf_head_off

Description Heap-based Buffer Overflow in function utfheadoff at mbyte.c:3872 vim Version git log commit 68e64d2c1735f2a39afa8a0475ae29bedb116684 HEAD - master, tag: v8.2.5006, origin/master, origin/HEAD POC ./vim -u NONE -i NONE -n -m -X -Z -e -s -S poch6s.dat -c :qa!...

vim: Heap-based buffer overflow in utf_head_off() in mbyte.c

A flaw was found in vim. The vulnerability occurs due to reading beyond the end of a line in the utfheadoff function, which can lead to a heap buffer overflow. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution...

CentOS 8 : vim (CESA-2022:0894)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2022:0894 advisory. - vim: Heap-based buffer overflow in blockinsert in src/ops.c CVE-2022-0261 - vim: Heap-based buffer overflow in utfheadoff in mbyte.c CVE-2022-0318 -...

Vulnerability of the utf_head_off() function (mbyte.c) in the Vim text editor, allowing a hacker to trigger buffer overflow

The vulnerability of the utfheadoff function mbyte.c in the Vim text editor is caused by buffer overflow in dynamic memory. Exploiting this vulnerability could allow a remote attacker to trigger a buffer overflow...

CVE-2022-0318

A flaw was found in vim. The vulnerability occurs due to reading beyond the end of a line in the utfheadoff function, which can lead to a heap buffer overflow. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution. Mitigation Untrusted vim scripts wi...