Lucene search
Veracode Vulnerability DatabaseVERACODE:36697HistoryAug 12, 2022 - 7:31 p.m.
Denial Of Service (DoS)
2022-08-1219:31:41
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12
0.001 Low
EPSS
Percentile
46.4%
vim/vim is vulnerable to denial of service. The vulnerability exists due to a null pointer dereference when deleting buffers in diff mode which allows an attacker to cause an application crash.
| CPE | Name | Operator | Version |
|---|---|---|---|
| vim:sid | eq | 2:8.2.2434-3 | |
| vim:sid | eq | 2:8.2.1913-1+b2 | |
| vim:sid | eq | 2:8.2.2434-3 | |
| vim:sid | eq | 2:8.2.1913-1+b2 |
References
github.com/vim/vim/commit/cd38bb4d83c942c4bad596835c6766cbf32e5195
huntr.dev/bounties/7bfe3d5b-568f-4c34-908f-a39909638cc1
lists.fedoraproject.org/archives/list/[email protected]/message/GFD2A4YLBR7OIRHTL7CK6YNMEIQ264CN/
lists.fedoraproject.org/archives/list/[email protected]/message/U743FMJGFQ35GBPCQ6OWMVZEJPDFVEWM/
security-tracker.debian.org/tracker/CVE-2022-2208
security.gentoo.org/glsa/202208-32
security.gentoo.org/glsa/202305-16
Related
redhatcve
redhatcve
CVE-2022-2208
2022-06-29 13:05:55
cbl_mariner
cbl_mariner
CVE-2022-2208 affecting package vim for versions less than 8.2.5172-1
2022-07-22 17:02:55
CVE-2022-2208 affecting package vim 8.2.5154-1
2022-07-14 20:59:57
huntr
huntr
Null pointer dereference in function diff_check
2022-06-25 00:25:51
cve
cve
CVE-2022-2208
2022-06-27 13:15:07
debiancve
debiancve
CVE-2022-2208
2022-06-27 13:15:07
nvd
nvd
CVE-2022-2208
2022-06-27 13:15:07
nessus
nessus
CBL Mariner 2.0 Security Update: vim (CVE-2022-2208)
2023-03-20 00:00:00
Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS : Vim vulnerabilities (USN-6270-1)
2023-08-03 00:00:00
EulerOS 2.0 SP5 : vim (EulerOS-SA-2022-2451)
2022-10-08 00:00:00
cvelist
cvelist
CVE-2022-2208 NULL Pointer Dereference in vim/vim
2022-06-27 00:00:00
alpinelinux
alpinelinux
CVE-2022-2208
2022-06-27 13:15:07
ubuntucve
ubuntucve
CVE-2022-2208
2022-06-27 00:00:00
prion
prion
Null pointer dereference
2022-06-27 13:15:00
cnvd
cnvd
Vim code issue vulnerability
2022-06-30 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2022-0209
2022-07-11 00:00:00
Critical Photon OS Security Update - PHSA-2022-0494
2022-07-11 00:00:00
Important Photon OS Security Update - PHSA-2022-4.0-0209
2022-07-11 00:00:00
osv
osv
vim vulnerabilities
2023-08-03 08:06:12
openvas
openvas
Ubuntu: Security Advisory (USN-6270-1)
2023-08-04 00:00:00
Fedora: Security Advisory for vim (FEDORA-2022-719f3ec21b)
2022-06-30 00:00:00
Fedora: Security Advisory for vim (FEDORA-2022-bb7f3cacbf)
2022-07-06 00:00:00
cloudfoundry
cloudfoundry
USN-6270-1: Vim vulnerabilities | Cloud Foundry
2023-10-05 00:00:00
ubuntu
ubuntu
Vim vulnerabilities
2023-08-03 00:00:00
fedora
fedora
[SECURITY] Fedora 36 Update: vim-8.2.5172-1.fc36
2022-06-30 01:22:15
[SECURITY] Fedora 35 Update: vim-8.2.5172-1.fc35
2022-07-04 01:11:06
redos
redos
ROS-20220701-01
2022-07-01 00:00:00
amazon
amazon
Medium: vim
2022-07-19 01:26:00
Medium: vim
2022-07-28 20:41:00
suse
suse
Security update for vim (important)
2022-09-09 00:00:00
mageia
mageia
Updated vim packages fix security vulnerability
2022-11-19 01:50:51
gentoo
gentoo
Vim, gVim: Multiple Vulnerabilities
2023-05-03 00:00:00
Vim, gVim: Multiple Vulnerabilities
2022-08-21 00:00:00
hp
hp
HP ThinPro 8.0 SP 8 Security Updates
2024-03-01 00:00:00
avleonov
avleonov