Lucene search

K

Veracode Vulnerability DatabaseVERACODE:36632

HistoryAug 09, 2022 - 9:29 a.m.

Denial Of Service (DoS)

2022-08-0909:29:17

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

22

denial of service

buffer over-read

vulnerable

vim

github

text length

EPSS

0

Percentile

14.2%

vim:sid is vulnerable to denial of service. A buffer over-read in GitHub repository is caused due to lack proper computation of text length.

References

seclists.org/fulldisclosure/2022/Oct/28

seclists.org/fulldisclosure/2022/Oct/41

github.com/vim/vim/commit/4748c4bd64610cf943a431d215bb1aad51f8d0b4

huntr.dev/bounties/522076b2-96cb-4df6-a504-e6e2f64c171c

lists.fedoraproject.org/archives/list/[email protected]/message/BFAZTAT5CZC2R6KYDYA2HBAVEDSIX6MW/

lists.fedoraproject.org/archives/list/[email protected]/message/IUPOLEX5GXC733HL4EFYMHFU7NISJJZG/

lists.fedoraproject.org/archives/list/[email protected]/message/QKIX5HYKWXWG6QBCPPTPQ53GNOFHSAIS/

security-tracker.debian.org/tracker/CVE-2022-1769

security.gentoo.org/glsa/202208-32

security.gentoo.org/glsa/202305-16

support.apple.com/kb/HT213488

EPSS

0

Percentile

14.2%

Related for VERACODE:36632

debiancve1 cbl_mariner2 cvelist1 huntr1 alpinelinux1 redos1 nvd1 prion1 cve1 nessus10 redhatcve1 ubuntucve1 fedora3 openvas5 altlinux2 photon4 mageia1 amazon2 osv1 gentoo2 apple1 avleonov1