CVE-2022-0156

Опубликовано: 10 янв. 2022

Источник: redhat

CVSS3: 5.5

Описание

vim is vulnerable to Use After Free

It was found that vim was vulnerable to use-after-free flaw in the way it was treating allocated lines in user functions. A specially crafted file could crash the vim process or possibly lead to other undefined behaviors.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 6	vim	Not affected
Red Hat Enterprise Linux 7	vim	Not affected
Red Hat Enterprise Linux 8	vim	Not affected
Red Hat Enterprise Linux 9	vim	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-416

https://bugzilla.redhat.com/show_bug.cgi?id=2039843vim: use-after-free while treating allocated lines in user functions

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2022-0156

CVSS3: 5.5

ubuntu

около 4 лет назад

vim is vulnerable to Use After Free

CVE-2022-0156

CVSS3: 5.5

nvd

около 4 лет назад

vim is vulnerable to Use After Free

CVE-2022-0156

CVSS3: 5.5

msrc

около 4 лет назад

Описание отсутствует

CVE-2022-0156

CVSS3: 5.5

debian

около 4 лет назад

vim is vulnerable to Use After Free

GHSA-3g57-r9p3-mh2v

CVSS3: 5.5

github

около 4 лет назад

vim is vulnerable to Use After Free

5.5 Medium

CVSS3