CVE-2022-1720

Updated: 2024-11-22 00:10:03.758054

Description:

Buffer Over-read in function grab_file_name in GitHub repository vim/vim prior to 8.2.4956. This vulnerability is capable of crashing the software, memory modification, and possible remote execution.

Links	NIST	CIRCL	RHEL	Ubuntu

Severity

	Severity	Score
CVSS Version 2.x	MEDIUM	6.8
CVSS Version 3.x	HIGH	7.8

Status

OS name	Project name	Version	Score	Severity	Status	Errata	Last updated
CentOS 6 ELS	vim	7.4.629	7.8	HIGH	Released	CLSA-2022:1657182572	2022-07-18 14:48:42
CloudLinux 6 ELS	vim	7.4.629	7.8	HIGH	Released	CLSA-2022:1657621270	2022-07-18 14:48:41
Oracle Linux 6 ELS	vim	7.4.629	7.8	HIGH	Released	CLSA-2022:1657182377	2022-07-07 06:30:50
Ubuntu 16.04 ELS	vim	7.4.1689-3	7.8	HIGH	Released	CLSA-2022:1657182150	2022-07-07 06:30:50