Your submission was sent successfully! Close

You have successfully unsubscribed! Close

CVE-2022-0685

Published: 20 February 2022

Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 8.2.4418.

Notes

AuthorNote
ccdm94
for bionic and earlier, the vulnerable function is found in file
src/misc1.c instead of src/filepath.c.
Priority

Medium

CVSS 3 base score: 7.8

Status

Package Release Status
vim
Launchpad, Ubuntu, Debian
bionic Needed

focal Needed

impish Ignored
(reached end-of-life)
jammy Needed

kinetic Needed

trusty Needed

upstream
Released (8.2.4418)
xenial
Released (2:7.4.1689-3ubuntu1.5+esm6)
Patches:
upstream: https://github.com/vim/vim/commit/5921aeb5741fc6e84c870d68c7c35b93ad0c9f87