Lucene search
Veracode Vulnerability DatabaseVERACODE:36694HistoryAug 12, 2022 - 5:15 p.m.
Heap-based Buffer Overflow
2022-08-1217:15:26
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
14
vim
buffer overflow
input validation
crash
system security
EPSS
0.002
Percentile
54.6%
vim is vulnerable to a heap buffer overflow. The vulnerability exists in parse_cmd_address() in function utf_ptr2char due to a lack of input validation which allows an attacker to inject malicious and crash the system.
References
github.com/vim/vim/commit/f7c7c3fad6d2135d558f3b36d0d1a943118aeb5e
huntr.dev/bounties/238d8650-3beb-4831-a8f7-6f0b597a6fb8
lists.fedoraproject.org/archives/list/[email protected]/message/GFD2A4YLBR7OIRHTL7CK6YNMEIQ264CN/
lists.fedoraproject.org/archives/list/[email protected]/message/U743FMJGFQ35GBPCQ6OWMVZEJPDFVEWM/
security-tracker.debian.org/tracker/CVE-2022-2182
security.gentoo.org/glsa/202208-32
security.gentoo.org/glsa/202305-16
Related
prion
prion
Heap overflow
2022-06-23 18:15:00
cbl_mariner
cbl_mariner
CVE-2022-2182 affecting package vim for versions less than 8.2.5172-1
2022-07-22 17:02:55
ubuntucve
ubuntucve
CVE-2022-2182
2022-06-23 00:00:00
cve
cve
CVE-2022-2182
2022-06-23 18:15:08
huntr
huntr
Heap-based Buffer Overflow in function utf_ptr2char
2022-06-20 07:14:25
nvd
nvd
CVE-2022-2182
2022-06-23 18:15:08
redhatcve
redhatcve
CVE-2022-2182
2022-06-29 12:35:43
debiancve
debiancve
CVE-2022-2182
2022-06-23 18:15:08
alpinelinux
alpinelinux
CVE-2022-2182
2022-06-23 18:15:08
cvelist
cvelist
CVE-2022-2182 Heap-based Buffer Overflow in vim/vim
2022-06-23 00:00:00
cloudlinux
cloudlinux
nessus
nessus
Photon OS 3.0: Vim PHSA-2022-3.0-0415
2024-07-24 00:00:00
Photon OS 4.0: Vim PHSA-2022-4.0-0208
2024-07-23 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2022-0208
2022-07-10 00:00:00
Important Photon OS Security Update - PHSA-2022-4.0-0208
2022-07-10 00:00:00
Important Photon OS Security Update - PHSA-2022-0493
2022-07-08 00:00:00
ubuntu
ubuntu
Vim vulnerabilities
2023-08-03 00:00:00
cloudfoundry
cloudfoundry
USN-6270-1: Vim vulnerabilities | Cloud Foundry
2023-10-05 00:00:00
osv
osv
vim vulnerabilities
2023-08-03 08:06:12
gvim-9.0.0453-2.1 on GA media
2024-06-15 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-6270-1)
2023-08-04 00:00:00
Fedora: Security Advisory for vim (FEDORA-2022-bb7f3cacbf)
2022-07-06 00:00:00
Fedora: Security Advisory for vim (FEDORA-2022-719f3ec21b)
2022-06-30 00:00:00
fedora
fedora
[SECURITY] Fedora 36 Update: vim-8.2.5172-1.fc36
2022-06-30 01:22:15
[SECURITY] Fedora 35 Update: vim-8.2.5172-1.fc35
2022-07-04 01:11:06
redos
redos
ROS-20220701-01
2022-07-01 00:00:00
ibm
ibm
amazon
amazon
Medium: vim
2022-07-28 20:41:00
Medium: vim
2022-07-19 01:26:00
suse
suse
Security update for vim (important)
2022-09-09 00:00:00
mageia
mageia
Updated vim packages fix security vulnerability
2022-11-19 01:50:51
gentoo
gentoo
Vim, gVim: Multiple Vulnerabilities
2023-05-03 00:00:00
Vim, gVim: Multiple Vulnerabilities
2022-08-21 00:00:00
hp
hp
HP ThinPro 8.0 SP 8 Security Updates
2024-03-01 00:00:00
avleonov
avleonov