Jump to:

CVE-2018-20786

Jump to:

CVE-2018-20786

Package libvterm updated to version 0+bzr726-alt2 for branch sisyphus in task 237504.

Published: 2019-02-24
Modified: 2024-11-21

CVE-2018-20786

libvterm through 0+bzr726, as used in Vim and other products, mishandles certain out-of-memory conditions, leading to a denial of service (application crash), related to screen.c, state.c, and vterm.c.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

https://github.com/vim/vim/commit/cd929f7ba8cc5b6d6dcf35c8b34124e969fed6b8
https://github.com/vim/vim/commit/cd929f7ba8cc5b6d6dcf35c8b34124e969fed6b8
https://github.com/vim/vim/issues/3711
https://github.com/vim/vim/issues/3711
USN-4309-1
USN-4309-1

Version: 2.1.0

Package libvterm update in sisyphus on 2019-09-13

ALT-PU-2019-2685-1

Closed vulnerabilities

CVE-2018-20786