ALT Linux Team

Package vim update in c10f1 on 2023-06-28

ALT-PU-2023-2089-1

Package vim updated to version 9.0.1598-alt1 for branch c10f1 in task 322345.

Closed vulnerabilities

Published: 2023-03-01

BDU:2023-01856

Уязвимость текстового редактора vim, связанная с ошибкой деления на ноль, позволяющая нарушителю выполнить произвольный код

Severity: HIGH (7.8) Vector: AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
References:
Published: 2023-03-11

BDU:2023-02159

Уязвимость функции class_object_index() (vim9class.c) текстового редактора Vim, позволяющая нарушителю вызвать отказ в обслуживании

Severity: HIGH (8.4) Vector: AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
References:
Published: 2023-03-01
Modified: 2024-11-21

CVE-2023-1127

Divide By Zero in GitHub repository vim/vim prior to 9.0.1367.

Severity: HIGH (7.8) Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
References:
Published: 2023-03-04
Modified: 2024-11-21

CVE-2023-1170

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1376.

Severity: MEDIUM (6.6) Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H
References:
Published: 2023-03-04
Modified: 2024-11-21

CVE-2023-1175

Incorrect Calculation of Buffer Size in GitHub repository vim/vim prior to 9.0.1378.

Severity: MEDIUM (6.6) Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H
References:
Published: 2023-03-08
Modified: 2024-11-21

CVE-2023-1264

NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.1392.

Severity: MEDIUM (5.5) Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
References:
Published: 2023-03-12
Modified: 2024-11-21

CVE-2023-1355

NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.1402.

Severity: MEDIUM (5.5) Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
References:
Published: 2023-04-30
Modified: 2024-11-21

CVE-2023-2426

Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 9.0.1499.

Severity: MEDIUM (5.5) Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
References:
Published: 2023-05-09
Modified: 2024-11-21

CVE-2023-2609

NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.1531.

Severity: MEDIUM (5.5) Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
References:
Published: 2023-05-10
Modified: 2024-11-29

CVE-2023-2610

Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0.1532.

Severity: HIGH (7.8) Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
References:
VKontakte | Telegram | YouTube | Forum | GitHub | Bugzilla
Version: 2.1.0
Back to top