CVE-2022-1621
Updated: 2022-05-25 08:24:24.4344
Description:
Heap buffer overflow in vim_strncpy find_word in GitHub repository vim/vim prior to 8.2.4919. This vulnerability is capable of crashing software, Bypass Protection Mechanism, Modify Memory, and possible remote execution
| Links | NIST | CIRCL | RHEL | Ubuntu |
Severity
| Severity | Score | |
|---|---|---|
| CVSS Version 2.x | MEDIUM | 6.8 |
| CVSS Version 3.x | HIGH | 7.8 |
Status
| OS name | Project name | Version | Status | Errata | Last updated |
|---|---|---|---|---|---|
| CentOS 6 ELS | vim | 7.4.629 | Released | CLSA-2022:1653006752 | 2022-05-26 16:03:20.370982 |
| CloudLinux 6 ELS | vim | 7.4.629 | Released | CLSA-2022:1653326657 | 2022-05-26 16:03:19.847778 |
| Oracle Linux 6 ELS | vim | 7.4.629 | Released | CLSA-2022:1653328424 | 2022-05-23 16:30:12.422959 |
| Ubuntu 16.04 ELS | vim | 7.4.1689-3ubuntu1.5 | Released | CLSA-2022:1653329020 | 2022-05-23 16:30:12.216156 |