Vim before 9.0.2142 has a stack-based buffer overflow because did_set_langmap in map.c calls sprintf to write to the error buffer that is passed down to the option callback functions.
Max CVSS
7.8
EPSS Score
0.04%
Published
2024-02-05
Updated
2024-02-23
Vim is an improved version of the good old UNIX editor Vi. Heap-use-after-free in memory allocated in the function `ga_grow_inner` in in the file `src/alloc.c` at line 748, which is freed in the file `src/ex_docmd.c` in the function `do_cmdline` at line 1010 and then used again in `src/cmdhist.c` at line 759. When using the `:history` command, it's possible that the provided argument overflows the accepted value. Causing an Integer Overflow and potentially later an use-after-free. This vulnerability has been patched in version 9.0.2068.
Max CVSS
5.5
EPSS Score
0.04%
Published
2023-10-27
Updated
2023-12-17
Use After Free in GitHub repository vim/vim prior to v9.0.2010.
Max CVSS
7.8
EPSS Score
0.05%
Published
2023-10-11
Updated
2023-11-15
NULL Pointer Dereference in GitHub repository vim/vim prior to 20d161ace307e28690229b68584f2d84556f8960.
Max CVSS
6.2
EPSS Score
0.04%
Published
2023-10-05
Updated
2023-11-15
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1969.
Max CVSS
7.5
EPSS Score
0.18%
Published
2023-10-02
Updated
2023-12-13
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1873.
Max CVSS
7.8
EPSS Score
0.05%
Published
2023-09-05
Updated
2024-02-01
Use After Free in GitHub repository vim/vim prior to 9.0.1858.
Max CVSS
7.8
EPSS Score
0.06%
Published
2023-09-04
Updated
2024-02-01
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1331.
Max CVSS
7.8
EPSS Score
0.05%
Published
2023-09-03
Updated
2023-12-22
Use After Free in GitHub repository vim/vim prior to 9.0.1857.
Max CVSS
7.8
EPSS Score
0.06%
Published
2023-09-04
Updated
2024-02-01
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1848.
Max CVSS
7.8
EPSS Score
0.05%
Published
2023-09-02
Updated
2024-02-01
Untrusted Search Path in GitHub repository vim/vim prior to 9.0.1833.
Max CVSS
7.8
EPSS Score
0.05%
Published
2023-09-02
Updated
2023-12-22
Out-of-bounds Write in GitHub repository vim/vim prior to 9.0.1847.
Max CVSS
7.8
EPSS Score
0.05%
Published
2023-09-02
Updated
2023-12-22
Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0.1846.
Max CVSS
7.8
EPSS Score
0.05%
Published
2023-09-02
Updated
2023-12-21
Use After Free in GitHub repository vim/vim prior to 9.0.1840.
Max CVSS
7.8
EPSS Score
0.06%
Published
2023-09-04
Updated
2024-02-01
Divide By Zero in vim/vim from 9.0.1367-1 to 9.0.1367-3
Max CVSS
7.8
EPSS Score
0.05%
Published
2023-08-07
Updated
2023-08-31
Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0.1532.
Max CVSS
7.8
EPSS Score
0.05%
Published
2023-05-09
Updated
2023-12-23
NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.1531.
Max CVSS
7.8
EPSS Score
0.04%
Published
2023-05-09
Updated
2023-12-23
Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 9.0.1499.
Max CVSS
6.8
EPSS Score
0.04%
Published
2023-04-29
Updated
2023-12-23
NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.1402.
Max CVSS
8.4
EPSS Score
0.05%
Published
2023-03-11
Updated
2023-04-02
NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.1392.
Max CVSS
6.6
EPSS Score
0.05%
Published
2023-03-07
Updated
2023-04-02
Incorrect Calculation of Buffer Size in GitHub repository vim/vim prior to 9.0.1378.
Max CVSS
7.3
EPSS Score
0.06%
Published
2023-03-04
Updated
2023-06-12
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1376.
Max CVSS
7.3
EPSS Score
0.05%
Published
2023-03-03
Updated
2023-04-02
Divide By Zero in GitHub repository vim/vim prior to 9.0.1367.
Max CVSS
7.8
EPSS Score
0.06%
Published
2023-03-01
Updated
2023-04-02
Divide By Zero in GitHub repository vim/vim prior to 9.0.1247.
Max CVSS
7.8
EPSS Score
0.07%
Published
2023-01-30
Updated
2023-04-02
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1225.
Max CVSS
7.8
EPSS Score
0.07%
Published
2023-01-21
Updated
2023-03-28