Extended Lifecycle Support CVE dashboard by TuxСare

CVEs Releases Projects

CVE-2022-1621

Updated: 2022-05-25 08:24:24.4344

Description:

Heap buffer overflow in vim_strncpy find_word in GitHub repository vim/vim prior to 8.2.4919. This vulnerability is capable of crashing software, Bypass Protection Mechanism, Modify Memory, and possible remote execution


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x MEDIUM 6.8
CVSS Version 3.x HIGH 7.8

Status

OS name Project name Version Status Errata Last updated
CentOS 6 ELS vim 7.4.629 Released CLSA-2022:1653006752 2022-05-26 16:03:20.370982
CloudLinux 6 ELS vim 7.4.629 Released CLSA-2022:1653326657 2022-05-26 16:03:19.847778
Oracle Linux 6 ELS vim 7.4.629 Released CLSA-2022:1653328424 2022-05-23 16:30:12.422959
Ubuntu 16.04 ELS vim 7.4.1689-3ubuntu1.5 Released CLSA-2022:1653329020 2022-05-23 16:30:12.216156