Lucene search
CloudLinuxCLSA-2022:1658171278HistoryJul 18, 2022 - 7:07 p.m.
Fixed 7 CVEs in vim
2022-07-1819:07:58
repo.cloudlinux.com
167
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
48.4%
- CVE-2022-2206: adjust cmdline_row and msg_row to the value of Rows
- CVE-2022-2284: stop visual mode when closing a window
- CVE-2022-2285: put a NUL after the typeahead
- CVE-2022-2286: check the length of the string
- CVE-2022-2287: disallow adding a word with control characters or a trailing slash
- CVE-2022-2264: adjust the end mark position
- CVE-2022-2257: check for NUL on string special values parsing
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Centos | 6 | x86_64 | vim-enhanced | < 7.4.629 | vim-7.4.629-5.2.el6.tuxcare.els22.src.rpm |
| Centos | 6 | x86_64 | vim-x11 | < 7.4.629 | vim-7.4.629-5.2.el6.tuxcare.els22.src.rpm |
| Centos | 6 | x86_64 | vim-minimal | < 7.4.629 | vim-7.4.629-5.2.el6.tuxcare.els22.src.rpm |
| Centos | 6 | x86_64 | vim-filesystem | < 7.4.629 | vim-7.4.629-5.2.el6.tuxcare.els22.src.rpm |
| Centos | 6 | x86_64 | vim-common | < 7.4.629 | vim-7.4.629-5.2.el6.tuxcare.els22.src.rpm |
Related
openvas
openvas
Fedora: Security Advisory for vim (FEDORA-2022-b06fbea2c7)
2022-07-15 00:00:00
Ubuntu: Security Advisory (USN-6270-1)
2023-08-04 00:00:00
Fedora: Security Advisory for vim (FEDORA-2022-9d7a58e376)
2022-07-22 00:00:00
fedora
fedora
[SECURITY] Fedora 36 Update: vim-9.0.049-1.fc36
2022-07-14 01:49:09
[SECURITY] Fedora 35 Update: vim-9.0.049-1.fc35
2022-07-21 17:10:23
[SECURITY] Fedora 36 Update: vim-8.2.5172-1.fc36
2022-06-30 01:22:15
osv
osv
vim vulnerabilities
2023-08-03 08:06:12
CVE-2022-2287
2022-07-02 22:15:00
CVE-2022-2286
2022-07-02 19:15:00
ubuntu
ubuntu
Vim vulnerabilities
2023-08-03 00:00:00
Vim vulnerabilities
2022-11-14 00:00:00
Vim vulnerabilities
2023-04-04 00:00:00
cloudfoundry
cloudfoundry
USN-6270-1: Vim vulnerabilities | Cloud Foundry
2023-10-05 00:00:00
USN-5995-1: Vim vulnerabilities | Cloud Foundry
2023-04-24 00:00:00
nessus
nessus
Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS : Vim vulnerabilities (USN-6270-1)
2023-08-03 00:00:00
Amazon Linux AMI : vim (ALAS-2022-1639)
2022-10-21 00:00:00
EulerOS 2.0 SP8 : vim (EulerOS-SA-2022-2483)
2022-10-09 00:00:00
amazon
amazon
cbl_mariner
cbl_mariner
CVE-2022-2257 affecting package vim for versions less than 9.0.0050-2
2022-08-03 21:15:04
CVE-2022-2257 affecting package vim 8.2.5172-1
2022-08-12 16:45:08
CVE-2022-2264 affecting package vim for versions less than 9.0.0050-2
2022-08-03 21:15:04
cve
cve
redhatcve
redhatcve
alpinelinux
alpinelinux
prion
prion
Design/Logic Flaw
2022-06-30 21:15:00
Design/Logic Flaw
2022-07-02 19:15:00
Design/Logic Flaw
2022-06-26 19:15:00
nvd
nvd
cvelist
cvelist
CVE-2022-2257 Out-of-bounds Read in vim/vim
2022-06-30 00:00:00
CVE-2022-2287 Out-of-bounds Read in vim/vim
2022-07-02 00:00:00
CVE-2022-2286 Out-of-bounds Read in vim/vim
2022-07-02 00:00:00
veracode
veracode
Out-of-Bounds Read
2022-08-12 23:30:12
Heap-based Buffer Overflow
2022-07-18 14:36:07
Out-Of-Bounds Read
2022-07-18 13:54:54
cnvd
cnvd
Vim Buffer Overflow Vulnerability (CNVD-2022-68095)
2022-07-04 00:00:00
Vim inc function buffer overflow vulnerability
2022-07-05 00:00:00
Vim Buffer Overflow Vulnerability (CNVD-2022-68096)
2022-06-30 00:00:00
huntr
huntr
Out-of-bound read in function msg_outtrans_special
2022-06-28 00:59:19
Heap-based buffer overflow in function inc
2022-06-29 04:21:43
Out-of-bounds Read in function ins_bytes
2022-06-29 06:55:44
ubuntucve
ubuntucve
debiancve
debiancve
suse
suse
Security update for vim (important)
2022-09-09 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2022-0209
2022-07-11 00:00:00
Critical Photon OS Security Update - PHSA-2022-0494
2022-07-11 00:00:00
Important Photon OS Security Update - PHSA-2022-4.0-0209
2022-07-11 00:00:00
mageia
mageia
Updated vim packages fix security vulnerability
2022-11-19 01:50:51
gentoo
gentoo
Vim, gVim: Multiple Vulnerabilities
2023-05-03 00:00:00
Vim, gVim: Multiple Vulnerabilities
2022-08-21 00:00:00
redos
redos
ROS-20220701-01
2022-07-01 00:00:00
hp
hp
HP ThinPro 8.0 SP 8 Security Updates
2024-03-01 00:00:00
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
48.4%
Related for CLSA-2022:1658171278