Описание
NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.5163.
Отчет
Red Hat has determined that this vulnerability is of low impact as the resulting DoS would only cause a crash in vim, which can be immediately restarted, and does not affect system stability or give the attacker the ability for arbitrary code execution.
Меры по смягчению последствий
Untrusted vim scripts with -s [scriptin] are not recommended to run.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 6 | vim | Out of support scope | ||
| Red Hat Enterprise Linux 7 | vim | Out of support scope | ||
| Red Hat Enterprise Linux 8 | vim | Fix deferred | ||
| Red Hat Enterprise Linux 9 | vim | Fix deferred |
Показывать по
10
Дополнительная информация
Статус:
Low
Дефект:
CWE-476
https://bugzilla.redhat.com/show_bug.cgi?id=2102183vim: null pointer dereference in function diff_check
EPSS
Процентиль: 27%
0.00091
Низкий
3.3 Low
CVSS3
Связанные уязвимости
CVSS3: 5.5
ubuntu
почти 3 года назад
NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.5163.
CVSS3: 5.5
nvd
почти 3 года назад
NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.5163.
CVSS3: 5.5
debian
почти 3 года назад
NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.516 ...
CVSS3: 5.5
github
почти 3 года назад
NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.
EPSS
Процентиль: 27%
0.00091
Низкий
3.3 Low
CVSS3