Search CVE reports
201 – 210 of 232 results
vim is vulnerable to Heap-based Buffer Overflow
1 affected package
vim
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| vim | — | Fixed | Not affected | Not affected |
vim is vulnerable to Use After Free
1 affected package
vim
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| vim | — | Fixed | Fixed | Fixed |
vim is vulnerable to Heap-based Buffer Overflow
1 affected package
vim
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| vim | — | Fixed | Fixed | Fixed |
vim is vulnerable to Heap-based Buffer Overflow
1 affected package
vim
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| vim | — | Fixed | Fixed | Not affected |
Some fixes available 3 of 4
In Vim before 8.1.0881, users can circumvent the rvim restricted mode and execute arbitrary OS commands via scripting interfaces (e.g., Python, Ruby, or Lua).
1 affected package
vim
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| vim | — | Not affected | Not affected | Fixed |
Some fixes available 2 of 3
The autocmd feature in window.c in Vim before 8.1.2136 accesses freed memory.
1 affected package
vim
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| vim | — | — | — | Fixed |
getchar.c in Vim before 8.1.1365 and Neovim before 0.3.6 allows remote attackers to execute arbitrary OS commands via the :source! command in a modeline, as demonstrated by execute in Vim, and assert_fails or nvim_input in Neovim.
2 affected packages
neovim, vim
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| neovim | — | Not affected | Not affected | Fixed |
| vim | — | Fixed | Fixed | Fixed |
Some fixes available 1 of 19
libvterm through 0+bzr726, as used in Vim and other products, mishandles certain out-of-memory conditions, leading to a denial of service (application crash), related to screen.c, state.c, and vterm.c.
2 affected packages
vim, libvterm
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| vim | Not affected | Not affected | Not affected | Fixed |
| libvterm | Vulnerable | Vulnerable | Vulnerable | Vulnerable |
Some fixes available 1 of 3
Syntastic (aka vim-syntastic) through 3.9.0 does not properly handle searches for configuration files (it searches the current directory up to potentially the root). This improper handling might be exploited for arbitrary code...
1 affected package
vim-syntastic
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| vim-syntastic | Not affected | Not affected | Not affected | Vulnerable |
Some fixes available 2 of 4
fileio.c in Vim prior to 8.0.1263 sets the group ownership of a .swp file to the editor's primary group (which may be different from the group ownership of the original file), which allows local users to obtain sensitive...
1 affected package
vim
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| vim | — | Not affected | Not affected | Not affected |