GHSA-3g57-r9p3-mh2v

Опубликовано: 11 янв. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.5

Описание

vim is vulnerable to Use After Free

Ссылки

https://nvd.nist.gov/vuln/detail/CVE-2022-0156
https://github.com/vim/vim/commit/9f1a39a5d1cd7989ada2d1cb32f97d84360e050f
https://huntr.dev/bounties/47dded34-3767-4725-8c7c-9dcb68c70b36
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3FH2J57GDA2WMBS6J56F6QQRA6BXQQFZ
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HD5S2FC2HF22A7XQXK2XXIR46EARVWIM
https://security.gentoo.org/glsa/202208-32
https://support.apple.com/kb/HT213183
https://support.apple.com/kb/HT213344
http://seclists.org/fulldisclosure/2022/Jul/13
http://seclists.org/fulldisclosure/2022/Mar/29
http://www.openwall.com/lists/oss-security/2022/01/15/1

EPSS

Процентиль: 32%

0.00123

Низкий

5.5 Medium

CVSS3

CVE ID

CVE-2022-0156

Дефекты

CWE-416

Связанные уязвимости

CVE-2022-0156

CVSS3: 5.5

ubuntu

около 4 лет назад

vim is vulnerable to Use After Free

CVE-2022-0156

CVSS3: 5.5

redhat

около 4 лет назад

vim is vulnerable to Use After Free

CVE-2022-0156

CVSS3: 5.5

nvd

около 4 лет назад

vim is vulnerable to Use After Free

CVE-2022-0156

CVSS3: 5.5

msrc

около 4 лет назад

Описание отсутствует

CVE-2022-0156

CVSS3: 5.5

debian

около 4 лет назад

vim is vulnerable to Use After Free

EPSS

Процентиль: 32%

0.00123

Низкий

5.5 Medium

CVSS3

CVE ID

CVE-2022-0156

Дефекты

CWE-416