CVE-2022-1674

Updated: 2022-10-30 21:03:59.185957

Description:

NULL Pointer Dereference in function vim_regexec_string at regexp.c:2733 in GitHub repository vim/vim prior to 8.2.4938. NULL Pointer Dereference in function vim_regexec_string at regexp.c:2733 allows attackers to cause a denial of service (application crash) via a crafted input.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x MEDIUM 4.3
CVSS Version 3.x MEDIUM 5.5

Status

OS name Project name Version Score Severity Status Errata Last updated
CentOS 6 ELS vim 7.4.629 5.5 MEDIUM Ignored 2022-05-23 19:13:44
CloudLinux 6 ELS vim 7.4.629 5.5 MEDIUM Ignored 2022-05-23 19:13:44
Oracle Linux 6 ELS vim 7.4.629 5.5 MEDIUM Ignored 2022-05-23 19:13:44
Ubuntu 16.04 ELS vim 7.4.1689-3ubuntu1.5 5.5 MEDIUM Released CLSA-2022:1669309294 2022-11-24 13:25:09

Statement

Will not fix: low score