First published: Wed May 25 2022(Updated: )
Last updated 24 July 2024
Credit: security@huntr.dev security@huntr.dev
Affected Software | Affected Version | How to fix |
---|---|---|
Vim Vim | <8.2.5013 | |
Fedoraproject Fedora | =34 | |
Fedoraproject Fedora | =35 | |
Fedoraproject Fedora | =36 | |
Debian Debian Linux | =9.0 | |
Debian Debian Linux | =10.0 | |
Apple macOS | <13.0 | |
<13 | 13 | |
debian/vim | <=2:8.2.2434-3+deb11u1 | 2:9.0.1378-2 2:9.1.0777-1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
CVE-2022-1851 is a vulnerability in the Vim text editor that allows for an out-of-bounds read, potentially leading to remote code execution or information disclosure.
macOS Ventura is affected by CVE-2022-1851 with versions up to exclusive 13. Updating to a version beyond 13 is recommended.
The Ubuntu vim package versions up to exclusive 2:8.1.2269-1ubuntu5.13 are affected by CVE-2022-1851. Updating to a version beyond 2:8.1.2269-1ubuntu5.13 is recommended.
To fix the vulnerability in Ubuntu vim package on Jammy release, update to version 2:8.2.3995-1ubuntu2.5 or later.
For the Debian vim package, updating to version 2:8.2.2434-3+deb11u1 or later is recommended. Additionally, versions 2:8.1.0875-5+deb10u5, 2:9.0.1378-2, and 2:9.0.1894-1 are also considered safe.