Описание
Vim is an open source, command line text editor. A segmentation fault was found in Vim before 9.1.1043. In silent Ex mode (-s -e), Vim typically doesn't show a screen and just operates silently in batch mode. However, it is still possible to trigger the function that handles the scrolling of a gui version of Vim by feeding some binary characters to Vim. The function that handles the scrolling however may be triggering a redraw, which will access the ScreenLines pointer, even so this variable hasn't been allocated (since there is no screen). This vulnerability is fixed in 9.1.1043.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 2:9.1.0967-1ubuntu4 |
| esm-infra-legacy/trusty | released | 2:7.4.052-1ubuntu3.1+esm22 |
| esm-infra/bionic | released | 2:8.0.1453-1ubuntu1.13+esm13 |
| esm-infra/focal | released | 2:8.1.2269-1ubuntu5.31 |
| esm-infra/xenial | released | 2:7.4.1689-3ubuntu1.5+esm28 |
| focal | released | 2:8.1.2269-1ubuntu5.31 |
| jammy | released | 2:8.2.3995-1ubuntu2.23 |
| noble | released | 2:9.1.0016-1ubuntu7.7 |
| oracular | released | 2:9.1.0496-1ubuntu6.4 |
| plucky | released | 2:9.1.0967-1ubuntu4 |
Показывать по
Ссылки на источники
EPSS
4.2 Medium
CVSS3
Связанные уязвимости
Vim is an open source, command line text editor. A segmentation fault was found in Vim before 9.1.1043. In silent Ex mode (-s -e), Vim typically doesn't show a screen and just operates silently in batch mode. However, it is still possible to trigger the function that handles the scrolling of a gui version of Vim by feeding some binary characters to Vim. The function that handles the scrolling however may be triggering a redraw, which will access the ScreenLines pointer, even so this variable hasn't been allocated (since there is no screen). This vulnerability is fixed in 9.1.1043.
Vim is an open source, command line text editor. A segmentation fault was found in Vim before 9.1.1043. In silent Ex mode (-s -e), Vim typically doesn't show a screen and just operates silently in batch mode. However, it is still possible to trigger the function that handles the scrolling of a gui version of Vim by feeding some binary characters to Vim. The function that handles the scrolling however may be triggering a redraw, which will access the ScreenLines pointer, even so this variable hasn't been allocated (since there is no screen). This vulnerability is fixed in 9.1.1043.
Vim is an open source, command line text editor. A segmentation fault ...
Уязвимость текстового редактора vim, связанная с чтением за границами буфера в памяти, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
4.2 Medium
CVSS3