EPSS
Percentile
62.5%
vim is vulnerable to heap-based buffer overflow. The vulnerability exists in do_put() function of register.c due to become negative of command column which allows an attacker to do a buffer overflow.
do_put()
register.c
github.com/vim/vim/commit/36343ae0fb7247e060abfd35fb8e4337b33abb4b
huntr.dev/bounties/c1db3b70-f4fe-481f-8a24-0b1449c94246
security-tracker.debian.org/tracker/CVE-2022-3520
security.gentoo.org/glsa/202305-16