First published: Mon Mar 14 2022(Updated: )
Heap-based Buffer Overflow occurs in vim in GitHub repository vim/vim prior to 8.2.4563.
Credit: security@huntr.dev security@huntr.dev
Affected Software | Affected Version | How to fix |
---|---|---|
Vim Vim | <8.2.4563 | |
Fedoraproject Fedora | =34 | |
Fedoraproject Fedora | =36 | |
Debian Debian Linux | =9.0 | |
Debian Debian Linux | =10.0 | |
Apple macOS | <13.0 | |
<13 | 13 | |
debian/vim | <=2:8.2.2434-3+deb11u1 | 2:9.0.1378-2 2:9.1.0861-1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
CVE-2022-0943 is a vulnerability in Vim that allows for a heap-based buffer overflow.
Vim versions prior to 8.2.4563 on Ubuntu Trusty, Xenial, Bionic, Focal, and Jammy, macOS Ventura, and Debian are affected.
To fix CVE-2022-0943, update Vim to version 8.2.4563 or later.
You can find more information about CVE-2022-0943 at the following references: [Reference 1](https://huntr.dev/bounties/9e4de32f-ad5f-4830-b3ae-9467b5ab90a1), [Reference 2](https://github.com/vim/vim/commit/5c68617d395f9d7b824f68475b24ce3e38d653a3), [Reference 3](https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/C3R36VSLO4TRX72SWB6IDJOD24BQXPX2/)
The severity of CVE-2022-0943 is not specified.