CVE-2022-0261
18.01.2022, 16:15
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| vim | vim | 𝑥 < 8.2.4120 |
| debian | debian_linux | 9.0 |
| debian | debian_linux | 10.0 |
| apple | mac_os_x | 10.12.6 |
| apple | macos | 𝑥 < 13.0 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
openSUSE / SLES Releases
openSUSE Product | |||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| gvim |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
| vim |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
| vim-data |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
| vim-data-common |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
| vim-small |
|
Red Hat Enterprise Linux Releases
Amazon Linux Releases
Amazon Package | |||||||
|---|---|---|---|---|---|---|---|
| vim-X11 |
| ||||||
| vim-common |
| ||||||
| vim-common-debuginfo |
| ||||||
| vim-data |
| ||||||
| vim-debuginfo |
| ||||||
| vim-debugsource |
| ||||||
| vim-default-editor |
| ||||||
| vim-enhanced |
| ||||||
| vim-enhanced-debuginfo |
| ||||||
| vim-filesystem |
| ||||||
| vim-minimal |
| ||||||
| vim-minimal-debuginfo |
|
Azure Linux Releases
Common Weakness Enumeration
- CWE-122 - Heap-based Buffer OverflowA heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().
- CWE-787 - Out-of-bounds WriteThe software writes data past the end, or before the beginning, of the intended buffer.
References