Your submission was sent successfully! Close

CVE-2021-4019

Published: 1 December 2021

vim is vulnerable to Heap-based Buffer Overflow

Priority

Medium

CVSS 3 base score: 7.8

Status

Package Release Status
vim
Launchpad, Ubuntu, Debian 		bionic
Released (2:8.0.1453-1ubuntu1.8)
focal
Released (2:8.1.2269-1ubuntu5.6)
hirsute Ignored
(reached end-of-life)
impish
Released (2:8.2.2434-3ubuntu3.2)
jammy Needed

trusty Needed

upstream
Released (v8.2.3669)
xenial Needed

Notes

AuthorNote
rayveldkamp 
in focal and earlier vulnerable function from src/help.c
is in src/ex_cmds.c.

References

Bugs

Join the discussion

Canonical is offering Extended Security Maintenance

Canonical is offering Ubuntu Extended Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

Further reading