Lucene search
Veracode Vulnerability DatabaseVERACODE:37006HistorySep 13, 2022 - 1:47 a.m.
Use-After-Free
2022-09-1301:47:32
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
13
vim
use-after-free
vulnerability
quickfix.c
autocmd
0.001 Low
EPSS
Percentile
39.4%
vim:edge is vulnerable to use-after-free. The vulnerability exist in the get_next_valid_entry function in quickfix.c because vim is using freed memory when the location list is changed in autocmd.
References
github.com/vim/vim/commit/6d24a51b94beb1991cddce221f90b455e2d50db7
huntr.dev/bounties/260516c2-5c4a-4b7f-a01c-04b1aeeea371
huntr.dev/bounties/260516c2-5c4a-4b7f-a01c-04b1aeeea371/
huntr.dev/bounties/260516c2-5c4a-4b7f-a01c-04b1aeeea371/
lists.fedoraproject.org/archives/list/[email protected]/message/XWOJOA7PZZAMBI5GFTL6PWHXMWSDLUXL/
secdb.alpinelinux.org/edge/main.yaml
security.gentoo.org/glsa/202305-16
Related
huntr
huntr
Use After Free in function get_next_valid_entry
2022-08-26 07:49:27
cve
cve
CVE-2022-3016
2022-08-28 12:15:08
redhatcve
redhatcve
CVE-2022-3016
2022-09-05 09:47:42
ubuntucve
ubuntucve
CVE-2022-3016
2022-08-28 00:00:00
nessus
nessus
CBL Mariner 2.0 Security Update: vim (CVE-2022-3016)
2023-03-28 00:00:00
Slackware Linux 15.0 / current vim Vulnerability (SSA:2022-242-01)
2022-08-30 00:00:00
EulerOS 2.0 SP10 : vim (EulerOS-SA-2022-2703)
2022-11-02 00:00:00
alpinelinux
alpinelinux
CVE-2022-3016
2022-08-28 12:15:08
debiancve
debiancve
CVE-2022-3016
2022-08-28 12:15:08
cbl_mariner
cbl_mariner
CVE-2022-3016 affecting package vim for versions less than 9.0.0325-1
2022-09-16 06:05:42
CVE-2022-3016 affecting package vim 9.0.0181-1
2022-09-17 05:56:39
cvelist
cvelist
CVE-2022-3016 Use After Free in vim/vim
2022-08-28 00:00:00
osv
osv
CVE-2022-3016
2022-08-28 12:15:00
vim vulnerabilities
2023-08-21 05:45:06
openvas
openvas
Slackware: Security Advisory (SSA:2022-242-01)
2022-08-31 00:00:00
Fedora: Security Advisory for vim (FEDORA-2022-b9edf60581)
2022-09-15 00:00:00
Huawei EulerOS: Security Advisory for vim (EulerOS-SA-2022-2671)
2022-11-03 00:00:00
nvd
nvd
CVE-2022-3016
2022-08-28 12:15:08
prion
prion
Design/Logic Flaw
2022-08-28 12:15:00
cnvd
cnvd
Vim Resource Management Error Vulnerability (CNVD-2022-68090)
2022-08-30 00:00:00
slackware
slackware
[slackware-security] vim
2022-08-30 19:41:07
redos
redos
ROS-20220909-01
2022-09-09 00:00:00
fedora
fedora
[SECURITY] Fedora 37 Update: vim-9.0.412-1.fc37
2022-09-14 00:28:23
ubuntu
ubuntu
Vim vulnerabilities
2023-08-21 00:00:00
amazon
amazon
Important: vim
2023-03-30 22:50:00
Low: vim
2022-10-17 21:46:00
cloudfoundry
cloudfoundry
USN-6302-1: Vim vulnerabilities | Cloud Foundry
2023-10-05 00:00:00
suse
suse
Security update for vim (important)
2022-09-09 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2023-3.0-0568
2023-04-19 00:00:00
Critical Photon OS Security Update - PHSA-2023-4.0-0380
2023-04-25 00:00:00
mageia
mageia
Updated vim packages fix security vulnerability
2022-11-19 01:50:51
gentoo
gentoo
Vim, gVim: Multiple Vulnerabilities
2023-05-03 00:00:00