SUSE: 2024:0783-1 Important: vim Buffer Overflow And Security Fixes

suse

March 6, 2024

* bsc#1215005 * bsc#1217316 * bsc#1217320 * bsc#1217321 * bsc#1217324

Summary

## This update for vim fixes the following issues: * CVE-2023-48231: Fixed Use-After-Free in win_close() (bsc#1217316). * CVE-2023-48232: Fixed Floating point Exception in adjust_plines_for_skipcol() (bsc#1217320). * CVE-2023-48233: Fixed overflow with count for :s command (bsc#1217321). * CVE-2023-48234: Fixed overflow in nv_z_get_count (bsc#1217324). * CVE-2023-48235: Fixed overflow in ex address parsing (bsc#1217326). * CVE-2023-48236: Fixed overflow in get_number (bsc#1217329). * CVE-2023-48237: Fixed overflow in shift_line (bsc#1217330). * CVE-2023-48706: Fixed heap-use-after-free in ex_substitute (bsc#1217432). * CVE-2024-22667: Fixed stack-based buffer overflow in did_set_langmap function in map.c (bsc#1219581).

Topics Covered

security advisory buffer overflow important security issues SUSE Linux threat management vim

References

* bsc#1215005

* bsc#1217316

* bsc#1217320

* bsc#1217321

* bsc#1217324

* bsc#1217326

* bsc#1217329

* bsc#1217330

* bsc#1217432

* bsc#1219581

Cross-

* CVE-2023-4750

* CVE-2023-48231

* CVE-2023-48232

* CVE-2023-48233

* CVE-2023-48234

* CVE-2023-48235

* CVE-2023-48236

* CVE-2023-48237

* CVE-2023-48706

* CVE-2024-22667

CVSS scores:

* CVE-2023-4750 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

* CVE-2023-4750 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

* CVE-2023-4750 ( NVD ): 7.8 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

* CVE-2023-48231 ( SUSE ): 3.9 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L

* CVE-2023-48231 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

* CVE-2023-48232 ( SUSE ): 3.9 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2024:0783-1

Rating: important

Topics Covered

security advisory buffer overflow important security issues SUSE Linux threat management vim

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2024:0783-1 Important: vim Buffer Overflow And Security Fixes

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2024:0783-1 Important: vim Buffer Overflow And Security Fixes

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!