Your submission was sent successfully! Close

CVE-2021-4019

Published: 1 December 2021

vim is vulnerable to Heap-based Buffer Overflow

Notes

AuthorNote
rayveldkamp
in focal and earlier vulnerable function from src/help.c
is in src/ex_cmds.c.
Priority

Medium

CVSS 3 base score: 7.8

Status

Package Release Status
vim
Launchpad, Ubuntu, Debian
bionic
Released (2:8.0.1453-1ubuntu1.8)
focal
Released (2:8.1.2269-1ubuntu5.6)
hirsute Ignored
(reached end-of-life)
impish
Released (2:8.2.2434-3ubuntu3.2)
jammy Needed

trusty Needed

upstream
Released (v8.2.3669)
xenial
Released (2:7.4.1689-3ubuntu1.5+esm4)