251 matches found
SUSE-SU-2025:0722-1 Security update for vim
This update for vim fixes the following issues: Update to version 9.1.1101: - CVE-2024-43790: possible out-of-bounds read when performing a search command bsc1229685. - CVE-2024-43802: heap buffer overflow due to incorrect flushing of the typeahead buffer bsc1229822. - CVE-2024-45306: heap buffer...
segmentation fault in win_line() in Vim < 9.1.1043
...
Advisory ROSA-SA-2025-2610
software: vim 9.1.0104 WASP: ROSA-CHROME packageevrstring: vim-9.1.0104-1 CVE-ID: CVE-2024-22667 BDU-ID: 2024-02840 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the Didsetlangmap function of the vim text editor involves calling sprintf to write to an error buffer that is passed to option callba...
AZL-55818 CVE-2025-24014 affecting package vim for versions less than 9.1.0791-3
Vim is an open source, command line text editor. A segmentation fault was found in Vim before 9.1.1043. In silent Ex mode -s -e, Vim typically doesn't show a screen and just operates silently in batch mode. However, it is still possible to trigger the function that handles the scrolling of a gui...
EulerOS 2.0 SP9 : vim (EulerOS-SA-2025-1066)
According to the versions of the vim packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Vim is an open source, command line text editor. A use-after-free was found in Vim 9.1.0764. When closing a buffer visible in a window a BufWinLeave...
Security update for vim
This update for vim fixes the following issues: CVE-2024-47814: Fixed use-after-free when closing buffers in Vim bsc1231373 CVE-2024-43374: Fixed use-after-free in alistadd bsc1229238 Other fixes: Updated to version 9.1.0836 Patch Instructions: To install this SUSE update use the SUSE recommended...
CBL Mariner 2.0 Security Update: vim (CVE-2024-47814)
The version of vim installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-47814 advisory. - Vim is an open source, command line text editor. A use-after-free was found in Vim 9.1.0764. When closing a...
UBUNTU-CVE-2024-41957
Vim is an open source command line text editor. Vim v9.1.0647 has double free in src/alloc.c:616. When closing a window, the corresponding tagstack data will be cleared and freed. However a bit later, the quickfix list belonging to that window will also be cleared and if that quickfix list points...
PT-2024-5765
Name of the Vulnerable Software and Affected Versions Vim versions prior to 9.1.0647 Description The issue exists due to a double-free error in the src/alloc.c file, specifically in the tagstack clear entry function. When a window is closed, the corresponding tagstack data is cleared and freed...
SUSE-SU-2024:1287-1 Security update for vim
This update for vim fixes the following issues: Updated to version 9.1.0111, fixes the following security problems - CVE-2023-48231: Use-After-Free in winclose bsc1217316. - CVE-2023-48232: Floating point Exception in adjustplinesforskipcol bsc1217320. - CVE-2023-48233: overflow with count for :s...
CVE-2024-22667
Vim before 9.0.2142 has a stack-based buffer overflow because didsetlangmap in map.c calls sprintf to write to the error buffer that is passed down to the option callback functions...
DEBIAN-CVE-2023-48236
Vim is an open source command line text editor. When using the z= command, the user may overflow the count with values larger than MAXINT. Impact is low, user interaction is required and a crash may not even happen in all situations. This vulnerability has been addressed in commit 73b2d379 which...
UBUNTU-CVE-2023-48233
Vim is an open source command line text editor. If the count after the :s command is larger than what fits into a signed long variable, abort with evaluetoolarge. Impact is low, user interaction is required and a crash may not even happen in all situations. This issue has been addressed in commit...
OESA-2023-1796 vim security update
Vim is an advanced text editor that seeks to provide the power of the de-facto Unix editor 'Vi', with a more complete feature set. Vim is a highly configurable text editor built to enable efficient text editing. It is an improved version of the vi editor distributed with most UNIX systems. Securi...
OESA-2023-1721 vim security update
Vim is an advanced text editor that seeks to provide the power of the de-facto Unix editor 'Vi', with a more complete feature set. Vim is a highly configurable text editor built to enable efficient text editing. It is an improved version of the vi editor distributed with most UNIX systems. Securi...
SUSE CVE-2023-4781
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1873...
SUSE CVE-2023-4733
Use After Free in GitHub repository vim/vim prior to 9.0.1840...
SUSE CVE-2023-4738
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1848...
DEBIAN-CVE-2023-4750
Use After Free in GitHub repository vim/vim prior to 9.0.1857...
ALPINE-CVE-2023-4733
Use After Free in GitHub repository vim/vim prior to 9.0.1840...