Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2023:3942-1

Опубликовано: 03 окт. 2023
Источник: suse-cvrf

Описание

Security update for vim

This update for vim fixes the following issues:

Security fixes:

  • CVE-2023-4733: Fixed use-after-free in function buflist_altfpos (bsc#1215004).
  • CVE-2023-4734: Fixed segmentation fault in function f_fullcommand (bsc#1214925).
  • CVE-2023-4735: Fixed out of bounds write in ops.c (bsc#1214924).
  • CVE-2023-4738: Fixed heap buffer overflow in vim_regsub_both (bsc#1214922).
  • CVE-2023-4752: Fixed heap use-after-free in function ins_compl_get_exp (bsc#1215006).
  • CVE-2023-4781: Fixed heap buffer overflow in function vim_regsub_both (bsc#1215033).

Other fixes:

  • Calling vim on xterm leads to missing first character of the command prompt (bsc#1211461)
  • Rendering corruption in gvim with all 9.x versions (bsc#1210738)
  • Updated to version 9.0 with patch level 1894

Список пакетов

Image SLES12-SP5-Azure-BYOS
vim-9.0.1894-17.23.2
vim-data-common-9.0.1894-17.23.2
Image SLES12-SP5-Azure-Basic-On-Demand
vim-9.0.1894-17.23.2
vim-data-common-9.0.1894-17.23.2
Image SLES12-SP5-Azure-HPC-BYOS
vim-9.0.1894-17.23.2
vim-data-common-9.0.1894-17.23.2
Image SLES12-SP5-Azure-HPC-On-Demand
vim-9.0.1894-17.23.2
vim-data-common-9.0.1894-17.23.2
Image SLES12-SP5-Azure-SAP-BYOS
vim-9.0.1894-17.23.2
vim-data-common-9.0.1894-17.23.2
Image SLES12-SP5-Azure-SAP-On-Demand
vim-9.0.1894-17.23.2
vim-data-common-9.0.1894-17.23.2
Image SLES12-SP5-Azure-Standard-On-Demand
vim-9.0.1894-17.23.2
vim-data-common-9.0.1894-17.23.2
Image SLES12-SP5-EC2-BYOS
vim-9.0.1894-17.23.2
vim-data-common-9.0.1894-17.23.2
Image SLES12-SP5-EC2-ECS-On-Demand
vim-9.0.1894-17.23.2
vim-data-common-9.0.1894-17.23.2
Image SLES12-SP5-EC2-On-Demand
vim-9.0.1894-17.23.2
vim-data-common-9.0.1894-17.23.2
Image SLES12-SP5-EC2-SAP-BYOS
vim-9.0.1894-17.23.2
vim-data-common-9.0.1894-17.23.2
Image SLES12-SP5-EC2-SAP-On-Demand
vim-9.0.1894-17.23.2
vim-data-common-9.0.1894-17.23.2
Image SLES12-SP5-GCE-BYOS
vim-9.0.1894-17.23.2
vim-data-common-9.0.1894-17.23.2
Image SLES12-SP5-GCE-On-Demand
vim-9.0.1894-17.23.2
vim-data-common-9.0.1894-17.23.2
Image SLES12-SP5-GCE-SAP-BYOS
vim-9.0.1894-17.23.2
vim-data-common-9.0.1894-17.23.2
Image SLES12-SP5-GCE-SAP-On-Demand
vim-9.0.1894-17.23.2
vim-data-common-9.0.1894-17.23.2
Image SLES12-SP5-SAP-Azure-LI-BYOS-Production
vim-9.0.1894-17.23.2
vim-data-common-9.0.1894-17.23.2
Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production
vim-9.0.1894-17.23.2
vim-data-common-9.0.1894-17.23.2
SUSE Linux Enterprise Server 12 SP5
gvim-9.0.1894-17.23.2
vim-9.0.1894-17.23.2
vim-data-9.0.1894-17.23.2
vim-data-common-9.0.1894-17.23.2
SUSE Linux Enterprise Server for SAP Applications 12 SP5
gvim-9.0.1894-17.23.2
vim-9.0.1894-17.23.2
vim-data-9.0.1894-17.23.2
vim-data-common-9.0.1894-17.23.2

Ссылки

Описание

Use After Free in GitHub repository vim/vim prior to 9.0.1840.

Затронутые продукты
Image SLES12-SP5-Azure-BYOS:vim-9.0.1894-17.23.2
Image SLES12-SP5-Azure-BYOS:vim-data-common-9.0.1894-17.23.2
Image SLES12-SP5-Azure-Basic-On-Demand:vim-9.0.1894-17.23.2
Image SLES12-SP5-Azure-Basic-On-Demand:vim-data-common-9.0.1894-17.23.2
Ссылки

Описание

Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0.1846.

Затронутые продукты
Image SLES12-SP5-Azure-BYOS:vim-9.0.1894-17.23.2
Image SLES12-SP5-Azure-BYOS:vim-data-common-9.0.1894-17.23.2
Image SLES12-SP5-Azure-Basic-On-Demand:vim-9.0.1894-17.23.2
Image SLES12-SP5-Azure-Basic-On-Demand:vim-data-common-9.0.1894-17.23.2
Ссылки

Описание

Out-of-bounds Write in GitHub repository vim/vim prior to 9.0.1847.

Затронутые продукты
Image SLES12-SP5-Azure-BYOS:vim-9.0.1894-17.23.2
Image SLES12-SP5-Azure-BYOS:vim-data-common-9.0.1894-17.23.2
Image SLES12-SP5-Azure-Basic-On-Demand:vim-9.0.1894-17.23.2
Image SLES12-SP5-Azure-Basic-On-Demand:vim-data-common-9.0.1894-17.23.2
Ссылки

Описание

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1848.

Затронутые продукты
Image SLES12-SP5-Azure-BYOS:vim-9.0.1894-17.23.2
Image SLES12-SP5-Azure-BYOS:vim-data-common-9.0.1894-17.23.2
Image SLES12-SP5-Azure-Basic-On-Demand:vim-9.0.1894-17.23.2
Image SLES12-SP5-Azure-Basic-On-Demand:vim-data-common-9.0.1894-17.23.2
Ссылки

Описание

Use After Free in GitHub repository vim/vim prior to 9.0.1858.

Затронутые продукты
Image SLES12-SP5-Azure-BYOS:vim-9.0.1894-17.23.2
Image SLES12-SP5-Azure-BYOS:vim-data-common-9.0.1894-17.23.2
Image SLES12-SP5-Azure-Basic-On-Demand:vim-9.0.1894-17.23.2
Image SLES12-SP5-Azure-Basic-On-Demand:vim-data-common-9.0.1894-17.23.2
Ссылки

Описание

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1873.

Затронутые продукты
Image SLES12-SP5-Azure-BYOS:vim-9.0.1894-17.23.2
Image SLES12-SP5-Azure-BYOS:vim-data-common-9.0.1894-17.23.2
Image SLES12-SP5-Azure-Basic-On-Demand:vim-9.0.1894-17.23.2
Image SLES12-SP5-Azure-Basic-On-Demand:vim-data-common-9.0.1894-17.23.2
Ссылки
Уязвимость SUSE-SU-2023:3942-1