CVE-2022-2126

Опубликовано: 19 июн. 2022

Источник: redhat

CVSS3: 7.8

Описание

Out-of-bounds Read in GitHub repository vim/vim prior to 8.2.

Отчет

Red Hat Product Security has rated this issue as having a Low security impact, because the "victim" has to run an untrusted file IN SCRIPT MODE. Someone who is running untrusted files in script mode is equivalent to someone just taking a random python script and running it. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/ Red Hat Enterprise Linux 6 and 7 are out of support scope for this flaw. To learn more about RHEL support scopes, please see https://access.redhat.com/support/policy/updates/errata/ .

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 6	vim	Out of support scope
Red Hat Enterprise Linux 7	vim	Out of support scope
Red Hat Enterprise Linux 8	vim	Fix deferred
Red Hat Enterprise Linux 9	vim	Fix deferred

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-125

https://bugzilla.redhat.com/show_bug.cgi?id=2099596vim: out of bounds read in suggest_trie_walk()

7.8 High

CVSS3

Связанные уязвимости

CVE-2022-2126

CVSS3: 7.8

ubuntu

около 3 лет назад

Out-of-bounds Read in GitHub repository vim/vim prior to 8.2.

CVE-2022-2126

CVSS3: 7.8

nvd

около 3 лет назад

Out-of-bounds Read in GitHub repository vim/vim prior to 8.2.

CVE-2022-2126

CVSS3: 7.8

msrc

почти 3 года назад

Описание отсутствует

CVE-2022-2126

CVSS3: 7.8

debian

около 3 лет назад

Out-of-bounds Read in GitHub repository vim/vim prior to 8.2.

GHSA-cwmc-8f88-5xx4

CVSS3: 7.8

github

около 3 лет назад

Out-of-bounds Read in GitHub repository vim/vim prior to 8.2.

7.8 High

CVSS3