Lucene search
CloudLinuxCLSA-2022:1644855718HistoryFeb 14, 2022 - 4:21 p.m.
Fix of CVE: CVE-2022-0351, CVE-2022-0368, CVE-2022-0359, CVE-2022-0361
2022-02-1416:21:58
repo.cloudlinux.com
42
cve-2022-0351
memory access
recursion
cve-2022-0359
ex mode
tabstop
cve-2022-0361
visual mode
copying lines
cve-2022-0368
undo
visual area
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.002
Percentile
53.9%
- CVE-2022-0351: fix crash caused by too depth recursion
- CVE-2022-0359: fix illegal memory access with large tabstop in ex mode
- CVE-2022-0361: fix illegal memory access when copying lines in visual mode
- CVE-2022-0368: fix illegal memory access when undo makes visual area invalid
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Centos | 6 | x86_64 | vim-filesystem | < 7.4.629 | vim-7.4.629-5.2.el6.tuxcare.els7.src.rpm |
| Centos | 6 | x86_64 | vim-enhanced | < 7.4.629 | vim-7.4.629-5.2.el6.tuxcare.els7.src.rpm |
| Centos | 6 | x86_64 | vim-minimal | < 7.4.629 | vim-7.4.629-5.2.el6.tuxcare.els7.src.rpm |
| Centos | 6 | x86_64 | vim-x11 | < 7.4.629 | vim-7.4.629-5.2.el6.tuxcare.els7.src.rpm |
| Centos | 6 | x86_64 | vim-common | < 7.4.629 | vim-7.4.629-5.2.el6.tuxcare.els7.src.rpm |
Related
nessus
nessus
Ubuntu 16.04 ESM : Vim vulnerabilities (USN-5458-1)
2022-06-02 00:00:00
Photon OS 4.0: Vim PHSA-2022-4.0-0154
2024-07-23 00:00:00
EulerOS 2.0 SP5 : vim (EulerOS-SA-2022-1553)
2022-04-25 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-5458-1)
2022-08-26 00:00:00
Huawei EulerOS: Security Advisory for vim (EulerOS-SA-2022-1553)
2022-04-25 00:00:00
Fedora: Security Advisory for vim (FEDORA-2022-f05f9c155b)
2022-01-30 00:00:00
osv
osv
vim vulnerabilities
2022-06-02 12:21:05
CVE-2022-0359
2022-01-26 12:15:00
CVE-2022-0368
2022-01-26 18:15:00
ubuntu
ubuntu
Vim vulnerabilities
2022-06-02 00:00:00
Vim vulnerabilities
2023-04-19 00:00:00
fedora
fedora
[SECURITY] Fedora 35 Update: vim-8.2.4232-1.fc35
2022-01-30 01:44:14
[SECURITY] Fedora 34 Update: vim-8.2.4232-1.fc34
2022-02-04 01:24:30
photon
photon
Important Photon OS Security Update - PHSA-2022-0362
2022-02-07 00:00:00
Important Photon OS Security Update - PHSA-2022-0154
2022-02-07 00:00:00
Important Photon OS Security Update - PHSA-2022-4.0-0154
2022-02-17 00:00:00
nvd
nvd
cve
cve
veracode
veracode
Out Of Bounds (OOB) Read
2022-02-14 00:29:36
Memory Corruption
2022-04-07 11:12:32
Denial Of Service (DoS)
2022-02-14 00:30:25
huntr
huntr
in vim/vim
2022-01-23 17:21:55
in vim/vim
2022-01-24 14:53:26
Heap-based Buffer Overflow in vim/vim
2022-01-24 10:08:48
redhatcve
redhatcve
cvelist
cvelist
CVE-2022-0351 Access of Memory Location Before Start of Buffer in vim/vim
2022-01-25 00:00:00
CVE-2022-0359 Heap-based Buffer Overflow in vim/vim
2022-01-26 00:00:00
CVE-2022-0368 Out-of-bounds Read in vim/vim
2022-01-26 00:00:00
cnvd
cnvd
vim buffer overflow vulnerability (CNVD-2022-20799)
2022-01-27 00:00:00
debiancve
debiancve
alpinelinux
alpinelinux
prion
prion
Heap overflow
2022-01-26 12:15:00
Design/Logic Flaw
2022-01-26 18:15:00
Design/Logic Flaw
2022-01-25 18:15:00
ubuntucve
ubuntucve
cbl_mariner
cbl_mariner
CVE-2022-0359 affecting package vim 8.2.4151-1
2022-02-25 01:45:45
CVE-2022-0368 affecting package vim 8.2.4151-1
2022-02-25 01:45:45
CVE-2022-0368 affecting package vim for versions less than 8.2.4233-1
2022-04-09 06:51:50
f5
f5
K08827426 : Vim vulnerability CVE-2022-0359
2022-04-04 00:00:00
redhat
redhat
(RHSA-2022:0894) Moderate: vim security update
2022-03-15 09:11:53
(RHSA-2022:1041) Important: Red Hat OpenShift GitOps security update
2022-03-23 21:13:43
(RHSA-2022:1042) Important: Red Hat OpenShift GitOps security update
2022-03-23 21:22:01
almalinux
almalinux
Moderate: vim security update
2022-03-15 09:11:53
oraclelinux
oraclelinux
vim security update
2022-03-16 00:00:00
rocky
rocky
vim security update
2022-03-15 09:11:53
amazon
amazon
cloudfoundry
cloudfoundry
USN-6026-1: Vim vulnerabilities | Cloud Foundry
2023-04-24 00:00:00
debian
debian
[SECURITY] [DLA 2947-1] vim security update
2022-03-11 22:50:56
[SECURITY] [DLA 3182-1] vim security update
2022-11-08 14:54:53
[SECURITY] [DLA 3011-1] vim security update
2022-05-16 19:42:09
suse
suse
Security update for vim (important)
2022-03-04 00:00:00
Security update for vim (important)
2022-06-16 00:00:00
ibm
ibm
apple
apple
About the security content of macOS Monterey 12.6
2022-09-12 00:00:00
About the security content of macOS Ventura 13
2022-10-24 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2023-2215
2023-08-15 09:26:16
Advisory ROSA-SA-2023-2214
2023-08-15 09:10:06
mageia
mageia
Updated vim packages fix security vulnerability
2022-05-25 21:46:18
gentoo
gentoo
Vim, gVim: Multiple Vulnerabilities
2022-08-21 00:00:00
avleonov
avleonov
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.002
Percentile
53.9%
Related for CLSA-2022:1644855718