Your submission was sent successfully! Close

You have successfully unsubscribed! Close

CVE-2022-0572

Published: 14 February 2022

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.

Notes

AuthorNote
ccdm94
for bionic and earlier, vulnerable code can be found in file
src/ex_cmds.c instead of src/indent.c (does not exist in bionic
and earlier).
Priority

Medium

CVSS 3 base score: 7.8

Status

Package Release Status
vim
Launchpad, Ubuntu, Debian
bionic Needed

focal Needed

impish Ignored
(reached end-of-life)
jammy Needed

kinetic Needed

trusty Needed

upstream
Released (8.2.4359)
xenial
Released (2:7.4.1689-3ubuntu1.5+esm6)
Patches:
upstream: https://github.com/vim/vim/commit/6e28703a8e41f775f64e442c5d11ce1ff599aa3f