SUSE: 2022:3229-1 Critical: Vim Buffer Overflows and Out-of-Bounds

suse

September 9, 2022

An update that solves 40 vulnerabilities and has two fixes is now available

Summary

This update for vim fixes the following issues: Updated to version 9.0 with patch level 0313: - CVE-2022-2183: Fixed out-of-bounds read through get_lisp_indent() (bsc#1200902). - CVE-2022-2182: Fixed heap-based buffer overflow through parse_cmd_address() (bsc#1200903). - CVE-2022-2175: Fixed buffer over-read through cmdline_insert_reg() (bsc#1200904). - CVE-2022-2304: Fixed stack buffer overflow in spell_dump_compl() (bsc#1201249). - CVE-2022-2343: Fixed heap-based buffer overflow in GitHub repository vim prior to 9.0.0044 (bsc#1201356). - CVE-2022-2344: Fixed another heap-based buffer overflow vim prior to 9.0.0045 (bsc#1201359). - CVE-2022-2345: Fixed use after free in GitHub repository vim prior to 9.0.0046. (bsc#1201363).

Topics Covered

security advisory buffer overflow critical important SUSE vim out-of-bounds

References

#1200270 #1200697 #1200698 #1200700 #1200701

#1200732 #1200884 #1200902 #1200903 #1200904

#1201132 #1201133 #1201134 #1201135 #1201136

#1201150 #1201151 #1201152 #1201153 #1201154

#1201155 #1201249 #1201356 #1201359 #1201363

#1201620 #1201863 #1202046 #1202049 #1202050

#1202051 #1202414 #1202420 #1202421 #1202511

#1202512 #1202515 #1202552 #1202599 #1202687

#1202689 #1202862

Cross- CVE-2022-1720 CVE-2022-1968 CVE-2022-2124

CVE-2022-2125 CVE-2022-2126 CVE-2022-2129

CVE-2022-2175 CVE-2022-2182 CVE-2022-2183

CVE-2022-2206 CVE-2022-2207 CVE-2022-2208

CVE-2022-2210 CVE-2022-2231 CVE-2022-2257

CVE-2022-2264 CVE-2022-2284 CVE-2022-2285

CVE-2022-2286 CVE-2022-2287 CVE-2022-2304

CVE-2022-2343 ...

Read the Full Advisory

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2022:3229-1

Rating: important

Topics Covered

security advisory buffer overflow critical important SUSE vim out-of-bounds

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2022:3229-1 Critical: Vim Buffer Overflows and Out-of-Bounds

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2022:3229-1 Critical: Vim Buffer Overflows and Out-of-Bounds

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!