CVE-2022-47024: Null Pointer Dereference
First published: Fri Jan 20 2023(Updated: )
A null pointer dereference issue was discovered in function gui_x11_create_blank_mouse in gui_x11.c in vim 8.1.2269 thru 9.0.0339 allows attackers to cause denial of service or other unspecified impacts.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Vim Vim | >=8.1.2269<=9.0.0339 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://github.com/vim/vim/commit/a63ad78ed31e36dbdf3a9cd28071dcdbefce7d19
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4EX6N2DB75A73MQGVW3CS4VTNPAYVM2M/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PZWIJBSQX53P7DHV77KRXJIXA4GH7XHC/
- https://security.gentoo.org/glsa/202305-16
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2022-47024.
What is the severity of CVE-2022-47024?
The severity of CVE-2022-47024 is high.
What is the affected software for CVE-2022-47024?
The affected software for CVE-2022-47024 is Vim version 8.1.2269 through 9.0.0339.
What are the potential impacts of CVE-2022-47024?
The potential impacts of CVE-2022-47024 are denial of service or other unspecified impacts.
How can I fix CVE-2022-47024?
To fix CVE-2022-47024, update Vim to a version beyond 9.0.0339.
- collector/nvd-index
- vendor/vim
- canonical/vim vim
- version/vim vim/8.1.2269
- version/vim vim/9.0.0339