CVE-2022-1733
HIGH | Platform: macOS | Changelog
CVE Details
Description
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.4968.
CVSS 3.1 Score
| Metric | Value |
|---|---|
| Base Score | 7.8 (HIGH) |
| Vector | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Weakness
References
- Apple Security Advisory
- NVD Entry
- http://seclists.org/fulldisclosure/2022/Oct/28
- http://seclists.org/fulldisclosure/2022/Oct/41 (Mailing List, Third Party Advisory)
- https://github.com/vim/vim/commit/60ae0e71490c97f2871a6344aca61cacf220f813 (Patch, Third Party Advisory)
- https://huntr.dev/bounties/6ff03b27-472b-4bef-a2bf-410fae65ff0a (Exploit, Third Party Advisory)
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BFAZTAT5CZC2R6KYDYA2HBAVEDSIX6MW/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IUPOLEX5GXC733HL4EFYMHFU7NISJJZG/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QKIX5HYKWXWG6QBCPPTPQ53GNOFHSAIS/
- https://security.gentoo.org/glsa/202208-32 (Third Party Advisory)