exploitDog

CVE-2021-3875

Опубликовано: 15 окт. 2021

Источник: debian

Описание

vim is vulnerable to Heap-based Buffer Overflow

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
vim	fixed	2:8.2.3565-1		package
vim	not-affected		bullseye	package
vim	not-affected		buster	package
vim	not-affected		stretch	package

Примечания

https://huntr.dev/bounties/5cdbc168-6ba1-4bc2-ba6c-28be12166a53/
Search from cursor position introduced in: https://github.com/vim/vim/commit/04db26b36000a4677b95403ec94bd11f6cc73975 (v8.2.3110)
Fixed by: https://github.com/vim/vim/commit/35a319b77f897744eec1155b736e9372c9c5575f (v8.2.3489)

Связанные уязвимости

CVE-2021-3875

CVSS3: 5.5

ubuntu

больше 4 лет назад

vim is vulnerable to Heap-based Buffer Overflow

CVE-2021-3875

CVSS3: 5.5

redhat

больше 4 лет назад

vim is vulnerable to Heap-based Buffer Overflow

CVE-2021-3875

CVSS3: 5.5

nvd

больше 4 лет назад

vim is vulnerable to Heap-based Buffer Overflow

CVE-2021-3875

CVSS3: 5.5

msrc

больше 4 лет назад

Heap-based Buffer Overflow in vim/vim

GHSA-q6pp-vprg-p5g9

CVSS3: 5.5

github

больше 3 лет назад

vim is vulnerable to Heap-based Buffer Overflow