vim is vulnerable to out-of-bound reads. Vulnerability exists in the msg_outtrans_special
function in message.c
to cause an out-of-bounds read that can crash the application.
CPE | Name | Operator | Version |
---|---|---|---|
vim:sid | eq | 2:8.2.2434-3 | |
vim:sid | eq | 2:8.2.1913-1+b2 | |
vim:sid | eq | 2:8.2.2434-3 | |
vim:sid | eq | 2:8.2.1913-1+b2 |
github.com/vim/vim/commit/083692d598139228e101b8c521aaef7bcf256e9a
huntr.dev/bounties/ca581f80-03ba-472a-b820-78f7fd05fe89
lists.fedoraproject.org/archives/list/[email protected]/message/43Y3VJPOTTY3NTREDIFUPITM2POG4ZLP/
lists.fedoraproject.org/archives/list/[email protected]/message/UXPO5EHDV6J4B27E65DOQGZFELUFPRSK/
security-tracker.debian.org/tracker/CVE-2022-2257
security.gentoo.org/glsa/202208-32
security.gentoo.org/glsa/202305-16