Alerts This Week
Warning Icon 1 640
Alerts This Week
Warning Icon 1 640

Ubuntu 16.04 ESM USN-5836-1 Critical: Vim Memory Management Issues

ubuntu
Calendar Grey January 31, 2023
Dist Ubuntu Esm H88
Ubuntu Security Notice USN-5837-1 addresses severe vulnerabilities in Gnome Shell affecting ESM versions with possible service interruption risks.
Several security issues were fixed in Vim.

Summary

Several security issues were fixed in Vim.

Software Description:

- vim: Vi IMproved - enhanced vi editor

Details:

It was discovered that Vim was not properly performing memory management

operations. An attacker could possibly use this issue to cause a denial

of service or execute arbitrary code. (CVE-2022-47024, CVE-2023-0049,

CVE-2023-0054, CVE-2023-0288, CVE-2023-0433)

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 16.04 ESM:
   vim                             2:7.4.1689-3ubuntu1.5+esm15

Ubuntu 14.04 ESM:
   vim                             2:7.4.052-1ubuntu3.1+esm6

In general, a standard system update will make all the necessary changes.

References

  https://ubuntu.com/security/notices/USN-5836-1

  CVE-2022-47024, CVE-2023-0049, CVE-2023-0054, CVE-2023-0288,

  CVE-2023-0433

Severity
critical
Lowest
Low
Medium
High
Critical

January 31, 2023

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here