Alerts This Week
Warning Icon 1 1,394
Alerts This Week
Warning Icon 1 1,394

Ubuntu 24.10/22.04/20.04: USN-7261-1 critical: vim denial of service

ubuntu
Calendar Grey February 10, 2025
Dist Ubuntu Esm H88
Debian Security Advisory DSA-4890-1 regarding Emacs tackles a possible memory leak exploit and potential data corruption issue. Please upgrade immediately!
Vim could be made crash.

Summary

Vim could be made crash.

Software Description:

- vim: Vi IMproved - enhanced vi editor

Details:

It was discovered that Vim incorrectly handled certain internal calls

when scrolling a window. An attacker could possibly use this issue to

cause a denial of service.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 24.10
  vim                             2:9.1.0496-1ubuntu6.4

Ubuntu 22.04 LTS
  vim                             2:8.2.3995-1ubuntu2.23

Ubuntu 20.04 LTS
  vim                             2:8.1.2269-1ubuntu5.31

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-7261-1

CVE-2025-24014

Severity
critical
Lowest
Low
Medium
High
Critical

Ubuntu Security Notice USN-7261-1

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here