Out-of-bounds Write in GitHub repository vim/vim prior to 9.0.

An update of the vim package has been released.

The remote host is affected by the vulnerability described in GLSA-202305-16 (Vim, gVim: Multiple Vulnerabilities)

  - Use after free in utf_ptr2char in GitHub repository vim/vim prior to 8.2.4646. (CVE-2022-1154)

  - heap buffer overflow in get_one_sourceline in GitHub repository vim/vim prior to 8.2.4647. (CVE-2022-1160)

  - global heap buffer overflow in skip_range in GitHub repository vim/vim prior to 8.2.4763. This     vulnerability is capable of crashing software, Bypass Protection Mechanism, Modify Memory, and possible     remote execution (CVE-2022-1381)

  - Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 8.2.4774. (CVE-2022-1420)

  - Use after free in append_command in GitHub repository vim/vim prior to 8.2.4895. This vulnerability is     capable of crashing software, Bypass Protection Mechanism, Modify Memory, and possible remote execution     (CVE-2022-1616)

  - Heap-based Buffer Overflow in function cmdline_erase_chars in GitHub repository vim/vim prior to 8.2.4899.
    This vulnerabilities are capable of crashing software, modify memory, and possible remote execution     (CVE-2022-1619)

  - NULL Pointer Dereference in function vim_regexec_string at regexp.c:2729 in GitHub repository vim/vim     prior to 8.2.4901. NULL Pointer Dereference in function vim_regexec_string at regexp.c:2729 allows     attackers to cause a denial of service (application crash) via a crafted input. (CVE-2022-1620)

  - Heap buffer overflow in vim_strncpy find_word in GitHub repository vim/vim prior to 8.2.4919. This     vulnerability is capable of crashing software, Bypass Protection Mechanism, Modify Memory, and possible     remote execution (CVE-2022-1621)

  - Buffer Over-read in function find_next_quote in GitHub repository vim/vim prior to 8.2.4925. This     vulnerabilities are capable of crashing software, Modify Memory, and possible remote execution     (CVE-2022-1629)

  - NULL Pointer Dereference in function vim_regexec_string at regexp.c:2733 in GitHub repository vim/vim     prior to 8.2.4938. NULL Pointer Dereference in function vim_regexec_string at regexp.c:2733 allows     attackers to cause a denial of service (application crash) via a crafted input. (CVE-2022-1674)

  - Buffer Over-read in function grab_file_name in GitHub repository vim/vim prior to 8.2.4956. This     vulnerability is capable of crashing the software, memory modification, and possible remote execution.
    (CVE-2022-1720)

  - NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.4959. (CVE-2022-1725)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.4968. (CVE-2022-1733)

  - Classic Buffer Overflow in GitHub repository vim/vim prior to 8.2.4969. (CVE-2022-1735)

  - Buffer Over-read in GitHub repository vim/vim prior to 8.2.4974. (CVE-2022-1769)

  - Uncontrolled Recursion in GitHub repository vim/vim prior to 8.2.4975. (CVE-2022-1771)

  - Out-of-bounds Write in GitHub repository vim/vim prior to 8.2.4977. (CVE-2022-1785)

  - Use After Free in GitHub repository vim/vim prior to 8.2.4979. (CVE-2022-1796)

  - Out-of-bounds Read in GitHub repository vim/vim prior to 8.2. (CVE-2022-1851, CVE-2022-2126,     CVE-2022-2183, CVE-2022-2206)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. (CVE-2022-1886, CVE-2022-1942,     CVE-2022-2125, CVE-2022-2182, CVE-2022-2207)

  - Out-of-bounds Write in GitHub repository vim/vim prior to 8.2. (CVE-2022-1897, CVE-2022-2000,     CVE-2022-2129, CVE-2022-2210)

  - Use After Free in GitHub repository vim/vim prior to 8.2. (CVE-2022-1898, CVE-2022-1968, CVE-2022-2042)

  - Buffer Over-read in GitHub repository vim/vim prior to 8.2. (CVE-2022-1927, CVE-2022-2124, CVE-2022-2175)

  - NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.5163. (CVE-2022-2208)

  - NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2. (CVE-2022-2231)

  - Out-of-bounds Read in GitHub repository vim/vim prior to 9.0. (CVE-2022-2257, CVE-2022-2286,     CVE-2022-2287)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0. (CVE-2022-2264, CVE-2022-2284)

  - Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0. (CVE-2022-2285)

  - Out-of-bounds Write in GitHub repository vim/vim prior to 9.0. (CVE-2022-2288)

  - Use After Free in GitHub repository vim/vim prior to 9.0. (CVE-2022-2289)

  - Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0. (CVE-2022-2304)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0044. (CVE-2022-2343)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0045. (CVE-2022-2344)

  - Use After Free in GitHub repository vim/vim prior to 9.0.0046. (CVE-2022-2345)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0061. (CVE-2022-2522)

  - Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.0212. (CVE-2022-2816)

  - Use After Free in GitHub repository vim/vim prior to 9.0.0213. (CVE-2022-2817)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0211. (CVE-2022-2819)

  - Buffer Over-read in GitHub repository vim/vim prior to 9.0.0218. (CVE-2022-2845)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0220. (CVE-2022-2849)

  - Use After Free in GitHub repository vim/vim prior to 9.0.0221. (CVE-2022-2862)

  - NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.0224. (CVE-2022-2874)

  - Use After Free in GitHub repository vim/vim prior to 9.0.0225. (CVE-2022-2889)

  - NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.0240. (CVE-2022-2923)

  - Use After Free in GitHub repository vim/vim prior to 9.0.0246. (CVE-2022-2946)

  - NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.0259. (CVE-2022-2980)

  - Use After Free in GitHub repository vim/vim prior to 9.0.0260. (CVE-2022-2982)

  - Use After Free in GitHub repository vim/vim prior to 9.0.0286. (CVE-2022-3016)

  - Use After Free in GitHub repository vim/vim prior to 9.0.0360. (CVE-2022-3099)

  - Use After Free in GitHub repository vim/vim prior to 9.0.0389. (CVE-2022-3134)

  - NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.0404. (CVE-2022-3153)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0483. (CVE-2022-3234)

  - Use After Free in GitHub repository vim/vim prior to 9.0.0490. (CVE-2022-3235)

  - Use After Free in GitHub repository vim/vim prior to 9.0.0530. (CVE-2022-3256)

  - NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.0552. (CVE-2022-3278)

  - Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0577. (CVE-2022-3296)

  - Use After Free in GitHub repository vim/vim prior to 9.0.0579. (CVE-2022-3297)

  - Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0598. (CVE-2022-3324)

  - Use After Free in GitHub repository vim/vim prior to 9.0.0614. (CVE-2022-3352)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0742. (CVE-2022-3491)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0765. (CVE-2022-3520)

  - Use After Free in GitHub repository vim/vim prior to 9.0.0789. (CVE-2022-3591)

  - A vulnerability was found in vim and classified as problematic. Affected by this issue is the function     qf_update_buffer of the file quickfix.c of the component autocmd Handler. The manipulation leads to use     after free. The attack may be launched remotely. Upgrading to version 9.0.0805 is able to address this     issue. The name of the patch is d0fab10ed2a86698937e3c3fed2f10bd9bb5e731. It is recommended to upgrade the     affected component. The identifier of this vulnerability is VDB-212324. (CVE-2022-3705)

  - Heap based buffer overflow in vim/vim 9.0.0946 and below by allowing an attacker to CTRL-W gf in the     expression used in the RHS of the substitute command. (CVE-2022-4141)

  - Use After Free in GitHub repository vim/vim prior to 9.0.0882. (CVE-2022-4292)

  - Floating Point Comparison with Incorrect Operator in GitHub repository vim/vim prior to 9.0.0804.
    (CVE-2022-4293)

  - A null pointer dereference issue was discovered in function gui_x11_create_blank_mouse in gui_x11.c in vim     8.1.2269 thru 9.0.0339 allows attackers to cause denial of service or other unspecified impacts.
    (CVE-2022-47024)

  - Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.1143. (CVE-2023-0049)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1144. (CVE-2023-0051)

  - Out-of-bounds Write in GitHub repository vim/vim prior to 9.0.1145. (CVE-2023-0054)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The version of vim installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-2288 advisory.

  - Out-of-bounds Write in GitHub repository vim/vim prior to 9.0. (CVE-2022-2288)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2022-1868 advisory.

    A flaw was found in vim, which is vulnerable to an out-of-bounds read in the msg_outtrans_special     function. This flaw allows a specially crafted file to crash software or execute code when opened in vim.
    (CVE-2022-2257)

    A heap buffer overflow vulnerability was found in Vim's inc() function of misc2.c. This issue occurs     because Vim reads beyond the end of the line with a put command. This flaw allows an attacker to trick a     user into opening a specially crafted file, triggering an out-of-bounds read that causes a crash in the     CLI tool. (CVE-2022-2264)

    Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0. (CVE-2022-2284)

    Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0. (CVE-2022-2285)

    Out-of-bounds Read in GitHub repository vim/vim prior to 9.0. (CVE-2022-2286)

    Out-of-bounds Read in GitHub repository vim/vim prior to 9.0. (CVE-2022-2287)

    Out-of-bounds Write in GitHub repository vim/vim prior to 9.0. (CVE-2022-2288)

    Use After Free in GitHub repository vim/vim prior to 9.0. (CVE-2022-2289)

    A stack-based buffer overflow vulnerability was found in Vim's spell_dump_compl() function of the     src/spell.c file. This issue occurs because the spell dump goes beyond the end of an array when crafted     input is processed. This flaw allows an attacker to trick a user into opening a specially crafted file,     triggering an out-of-bounds write that causes an application to crash, possibly executing code and     corrupting memory. (CVE-2022-2304)

    A heap-based buffer overflow was found in Vim in the ins_compl_add function in the insexpand.c file. This     issue occurs due to a read past the end of a buffer when a specially crafted input is processed. This flaw     allows an attacker who can trick a user into opening a specially crafted file into triggering the heap-     based buffer overflow, causing the application to crash, possibly executing code and corrupting memory.
    (CVE-2022-2343)

    A heap-based buffer overflow was found in Vim in the ins_compl_add function in the insexpand.c file. This     issue occurs due to a read past the end of a buffer when a specially crafted input is processed. This flaw     allows an attacker who can trick a user into opening a specially crafted file into triggering the heap-     based buffer overflow, causing the application to crash, possibly executing code and corrupting memory.
    (CVE-2022-2344)

    A use-after-free vulnerability was found in Vim in the skipwhite function in the charset.c file. This     issue occurs because an already freed memory is used when a specially crafted input is processed. This     flaw allows an attacker who can trick a user into opening a specially crafted file into triggering the     use-after-free, and cause the application to crash, possibly executing code and corrupting memory.
    (CVE-2022-2345)

    An out-of-bounds read vulnerability was found in Vim in the check_vim9_unlet function in the vim9cmds.c     file. This issue occurs because of invalid memory access when compiling the unlet command when a specially     crafted input is processed. This flaw allows an attacker who can trick a user into opening a specially     crafted file into triggering the out-of-bounds read, causing the application to crash, possibly executing     code and corrupting memory. (CVE-2022-2816)

    A use-after-free vulnerability was found in Vim in the string_quote function in the strings.c file. This     issue occurs because an already freed memory is used when a specially crafted input is processed. This     flaw allows an attacker who can trick a user into opening a specially crafted file into triggering the     use-after-free, causing the application to crash, possibly executing code and corrupting memory.
    (CVE-2022-2817)

    A flaw was found in vim. The vulnerability occurs due to illegal memory access and leads to a heap buffer     overflow vulnerability. This flaw allows an attacker to input a specially crafted file, leading to a crash     or code execution. (CVE-2022-2819)

    Buffer Over-read in GitHub repository vim/vim prior to 9.0.0218. (CVE-2022-2845)

    Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0220. (CVE-2022-2849)

    Use After Free in GitHub repository vim/vim prior to 9.0.0221. (CVE-2022-2862)

    A use-after-free vulnerability was found in Vim in the find_var_also_in_script function in the evalvars.c     file. This issue occurs because an already freed memory is used when a specially crafted input is     processed. This flaw allows an attacker who can trick a user into opening a specially crafted file into     triggering the use-after-free, causing the application to crash, possibly executing code and corrupting     memory. (CVE-2022-2889)

    A flaw was found in vim, where it is vulnerable to a NULL pointer dereference in the sug_filltree     function. This flaw allows a specially crafted file to crash the software. (CVE-2022-2923)

    A flaw was found in vim, where it is vulnerable to a use-after-free in the vim_vsnprintf_typval function.
    This flaw allows a specially crafted file to crash a program, use unexpected values, or execute code.
    (CVE-2022-2946)

    A NULL pointer dereference vulnerability was found in vim's do_mouse() function of the src/mouse.c file.
    The issue occurs with a mouse click when it is not initialized. This flaw allows an attacker to trick a     user into opening a specially crafted input file, triggering the vulnerability that could cause an     application to crash. (CVE-2022-2980)

    A heap use-after-free vulnerability was found in vim's qf_fill_buffer() function of the src/quickfix.c     file. The issue occurs because vim uses freed memory when recursively using 'quickfixtextfunc.' This flaw     allows an attacker to trick a user into opening a specially crafted file, triggering a heap use-after-free     that causes an application to crash, possibly executing code and corrupting memory. (CVE-2022-2982)

    A heap use-after-free vulnerability was found in vim's get_next_valid_entry() function of the     src/quickfix.c file. The issue occurs because vim is using freed memory when the location list is changed     in autocmd. This flaw allows an attacker to trick a user into opening a specially crafted file, triggering     a heap use-after-free that causes an application to crash, possibly executing code and corrupting memory.
    (CVE-2022-3016)

    Use After Free in GitHub repository vim/vim prior to 9.0.0322. (CVE-2022-3037)

    A use-after-free vulnerability was found in vim's do_cmdline() function of the src/ex_docmd.c file. The     issue triggers when an invalid line number on :for is ignored. This flaw allows an attacker to trick a     user into opening a specially crafted file, triggering use-after-free that causes an application to crash,     possibly executing code and corrupting memory. (CVE-2022-3099)

Tenable has extracted the preceding description block directly from the tested product security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2022-1639 advisory.

    A flaw was found in vim, which is vulnerable to an out-of-bounds read in the msg_outtrans_special     function. This flaw allows a specially crafted file to crash software or execute code when opened in vim.
    (CVE-2022-2257)

    A heap buffer overflow vulnerability was found in Vim's inc() function of misc2.c. This issue occurs     because Vim reads beyond the end of the line with a put command. This flaw allows an attacker to trick a     user into opening a specially crafted file, triggering an out-of-bounds read that causes a crash in the     CLI tool. (CVE-2022-2264)

    Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0. (CVE-2022-2284)

    Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0. (CVE-2022-2285)

    Out-of-bounds Read in GitHub repository vim/vim prior to 9.0. (CVE-2022-2286)

    Out-of-bounds Read in GitHub repository vim/vim prior to 9.0. (CVE-2022-2287)

    Out-of-bounds Write in GitHub repository vim/vim prior to 9.0. (CVE-2022-2288)

    Use After Free in GitHub repository vim/vim prior to 9.0. (CVE-2022-2289)

    A stack-based buffer overflow vulnerability was found in Vim's spell_dump_compl() function of the     src/spell.c file. This issue occurs because the spell dump goes beyond the end of an array when crafted     input is processed. This flaw allows an attacker to trick a user into opening a specially crafted file,     triggering an out-of-bounds write that causes an application to crash, possibly executing code and     corrupting memory. (CVE-2022-2304)

    A heap-based buffer overflow was found in Vim in the ins_compl_add function in the insexpand.c file. This     issue occurs due to a read past the end of a buffer when a specially crafted input is processed. This flaw     allows an attacker who can trick a user into opening a specially crafted file into triggering the heap-     based buffer overflow, causing the application to crash, possibly executing code and corrupting memory.
    (CVE-2022-2343)

    A heap-based buffer overflow was found in Vim in the ins_compl_add function in the insexpand.c file. This     issue occurs due to a read past the end of a buffer when a specially crafted input is processed. This flaw     allows an attacker who can trick a user into opening a specially crafted file into triggering the heap-     based buffer overflow, causing the application to crash, possibly executing code and corrupting memory.
    (CVE-2022-2344)

    A use-after-free vulnerability was found in Vim in the skipwhite function in the charset.c file. This     issue occurs because an already freed memory is used when a specially crafted input is processed. This     flaw allows an attacker who can trick a user into opening a specially crafted file into triggering the     use-after-free, and cause the application to crash, possibly executing code and corrupting memory.
    (CVE-2022-2345)

    An out-of-bounds read vulnerability was found in Vim in the check_vim9_unlet function in the vim9cmds.c     file. This issue occurs because of invalid memory access when compiling the unlet command when a specially     crafted input is processed. This flaw allows an attacker who can trick a user into opening a specially     crafted file into triggering the out-of-bounds read, causing the application to crash, possibly executing     code and corrupting memory. (CVE-2022-2816)

    A use-after-free vulnerability was found in Vim in the string_quote function in the strings.c file. This     issue occurs because an already freed memory is used when a specially crafted input is processed. This     flaw allows an attacker who can trick a user into opening a specially crafted file into triggering the     use-after-free, causing the application to crash, possibly executing code and corrupting memory.
    (CVE-2022-2817)

    A flaw was found in vim. The vulnerability occurs due to illegal memory access and leads to a heap buffer     overflow vulnerability. This flaw allows an attacker to input a specially crafted file, leading to a crash     or code execution. (CVE-2022-2819)

    Use After Free in GitHub repository vim/vim prior to 9.0.0322. (CVE-2022-3037)

Tenable has extracted the preceding description block directly from the tested product security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2022-2022-155 advisory.

    A use-after-free vulnerability was found in vim's do_cmdline() function of the src/ex_docmd.c file. The     issue triggers when an invalid line number on :for is ignored. This flaw allows an attacker to trick a     user into opening a specially crafted file, triggering use-after-free that causes an application to crash,     possibly executing code and corrupting memory. (CVE-2022-3099)

    A heap use-after-free vulnerability was found in vim's do_tag() function of the src/tag.c file. The issue     triggers when the 'tagfunc' closes the window. This flaw allows an attacker to trick a user into opening a     specially crafted file, triggering a heap use-after-free that causes an application to crash, possibly     executing code and corrupting memory. (CVE-2022-3134)

    NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.0404. (CVE-2022-3153)

Tenable has extracted the preceding description block directly from the tested product security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote host is affected by the vulnerability described in GLSA-202208-32 (Vim, gVim: Multiple Vulnerabilities)

  - vim is vulnerable to Heap-based Buffer Overflow (CVE-2021-3770, CVE-2021-3778, CVE-2021-3872,     CVE-2021-3875, CVE-2021-3927, CVE-2021-3968, CVE-2021-3973, CVE-2021-3984, CVE-2021-4019, CVE-2021-4136,     CVE-2022-0158, CVE-2022-0213)

  - vim is vulnerable to Use After Free (CVE-2021-3796, CVE-2021-3974, CVE-2021-4069, CVE-2021-4173,     CVE-2021-4187, CVE-2021-4192, CVE-2022-0156)

  - vim is vulnerable to Use of Uninitialized Variable (CVE-2021-3928)

  - vim is vulnerable to Out-of-bounds Read (CVE-2021-4166, CVE-2021-4193, CVE-2022-0128)

  - ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by     its CNA. Further investigation showed that it was not a security issue. Notes: none. (CVE-2021-46059)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. (CVE-2022-0261, CVE-2022-0359,     CVE-2022-0361, CVE-2022-0407, CVE-2022-1886, CVE-2022-1942, CVE-2022-2125, CVE-2022-2182, CVE-2022-2207)

  - Heap-based Buffer Overflow in vim/vim prior to 8.2. (CVE-2022-0318)

  - Out-of-bounds Read in vim/vim prior to 8.2. (CVE-2022-0319)

  - Access of Memory Location Before Start of Buffer in GitHub repository vim/vim prior to 8.2.
    (CVE-2022-0351)

  - Out-of-bounds Read in GitHub repository vim/vim prior to 8.2. (CVE-2022-0368, CVE-2022-0393,     CVE-2022-1851, CVE-2022-2126, CVE-2022-2183, CVE-2022-2206)

  - Heap-based Buffer Overflow in GitHub repository vim prior to 8.2. (CVE-2022-0392)

  - Stack-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. (CVE-2022-0408, CVE-2022-0629)

  - Use After Free in GitHub repository vim/vim prior to 8.2. (CVE-2022-0413, CVE-2022-0443, CVE-2022-1898,     CVE-2022-1968, CVE-2022-2042)

  - Heap-based Buffer Overflow GitHub repository vim/vim prior to 8.2. (CVE-2022-0417)

  - Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 8.2. (CVE-2022-0554)

  - Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 8.2.4418. (CVE-2022-0685)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.4436. (CVE-2022-0714)

  - Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 8.2.4440. (CVE-2022-0729)

  - Heap-based Buffer Overflow occurs in vim in GitHub repository vim/vim prior to 8.2.4563. (CVE-2022-0943)

  - Use after free in utf_ptr2char in GitHub repository vim/vim prior to 8.2.4646. (CVE-2022-1154)

  - heap buffer overflow in get_one_sourceline in GitHub repository vim/vim prior to 8.2.4647. (CVE-2022-1160)

  - global heap buffer overflow in skip_range in GitHub repository vim/vim prior to 8.2.4763. This     vulnerability is capable of crashing software, Bypass Protection Mechanism, Modify Memory, and possible     remote execution (CVE-2022-1381)

  - Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 8.2.4774. (CVE-2022-1420)

  - Use after free in append_command in GitHub repository vim/vim prior to 8.2.4895. This vulnerability is     capable of crashing software, Bypass Protection Mechanism, Modify Memory, and possible remote execution     (CVE-2022-1616)

  - Heap-based Buffer Overflow in function cmdline_erase_chars in GitHub repository vim/vim prior to 8.2.4899.
    This vulnerabilities are capable of crashing software, modify memory, and possible remote execution     (CVE-2022-1619)

  - NULL Pointer Dereference in function vim_regexec_string at regexp.c:2729 in GitHub repository vim/vim     prior to 8.2.4901. NULL Pointer Dereference in function vim_regexec_string at regexp.c:2729 allows     attackers to cause a denial of service (application crash) via a crafted input. (CVE-2022-1620)

  - Heap buffer overflow in vim_strncpy find_word in GitHub repository vim/vim prior to 8.2.4919. This     vulnerability is capable of crashing software, Bypass Protection Mechanism, Modify Memory, and possible     remote execution (CVE-2022-1621)

  - Buffer Over-read in function find_next_quote in GitHub repository vim/vim prior to 8.2.4925. This     vulnerabilities are capable of crashing software, Modify Memory, and possible remote execution     (CVE-2022-1629)

  - NULL Pointer Dereference in function vim_regexec_string at regexp.c:2733 in GitHub repository vim/vim     prior to 8.2.4938. NULL Pointer Dereference in function vim_regexec_string at regexp.c:2733 allows     attackers to cause a denial of service (application crash) via a crafted input. (CVE-2022-1674)

  - Buffer Over-read in function grab_file_name in GitHub repository vim/vim prior to 8.2.4956. This     vulnerability is capable of crashing the software, memory modification, and possible remote execution.
    (CVE-2022-1720)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.4968. (CVE-2022-1733)

  - Classic Buffer Overflow in GitHub repository vim/vim prior to 8.2.4969. (CVE-2022-1735)

  - Buffer Over-read in GitHub repository vim/vim prior to 8.2.4974. (CVE-2022-1769)

  - Uncontrolled Recursion in GitHub repository vim/vim prior to 8.2.4975. (CVE-2022-1771)

  - Out-of-bounds Write in GitHub repository vim/vim prior to 8.2.4977. (CVE-2022-1785)

  - Use After Free in GitHub repository vim/vim prior to 8.2.4979. (CVE-2022-1796)

  - Out-of-bounds Write in GitHub repository vim/vim prior to 8.2. (CVE-2022-1897, CVE-2022-2000,     CVE-2022-2129, CVE-2022-2210)

  - Buffer Over-read in GitHub repository vim/vim prior to 8.2. (CVE-2022-1927, CVE-2022-2124, CVE-2022-2175)

  - NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.5163. (CVE-2022-2208)

  - NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2. (CVE-2022-2231)

  - Out-of-bounds Read in GitHub repository vim/vim prior to 9.0. (CVE-2022-2257, CVE-2022-2286,     CVE-2022-2287)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0. (CVE-2022-2264, CVE-2022-2284)

  - Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0. (CVE-2022-2285)

  - Out-of-bounds Write in GitHub repository vim/vim prior to 9.0. (CVE-2022-2288)

  - Use After Free in GitHub repository vim/vim prior to 9.0. (CVE-2022-2289)

  - Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0. (CVE-2022-2304)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0044. (CVE-2022-2343)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0045. (CVE-2022-2344)

  - Use After Free in GitHub repository vim/vim prior to 9.0.0046. (CVE-2022-2345)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

ID	Name	Product	Family	Severity
203990	Photon OS 3.0: Vim PHSA-2023-3.0-0568	Nessus	PhotonOS Local Security Checks	high
203253	Photon OS 4.0: Vim PHSA-2023-4.0-0380	Nessus	PhotonOS Local Security Checks	high
175057	GLSA-202305-16 : Vim, gVim: Multiple Vulnerabilities	Nessus	Gentoo Local Security Checks	critical
173115	Amazon Linux 2023 : vim-common, vim-data, vim-default-editor (ALAS2023-2023-098)	Nessus	Amazon Linux Local Security Checks	critical
172865	CBL Mariner 2.0 Security Update: vim (CVE-2022-2288)	Nessus	MarinerOS Local Security Checks	high
166395	Amazon Linux 2 : vim (ALAS-2022-1868)	Nessus	Amazon Linux Local Security Checks	high
166356	Amazon Linux AMI : vim (ALAS-2022-1639)	Nessus	Amazon Linux Local Security Checks	high
166352	Amazon Linux 2022 : vim-common, vim-data, vim-default-editor (ALAS2022-2022-155)	Nessus	Amazon Linux Local Security Checks	critical
164318	GLSA-202208-32 : Vim, gVim: Multiple Vulnerabilities	Nessus	Gentoo Local Security Checks	critical

Detections

Analytics

CVE-2022-2288

high

Tenable Plugins

high

high

critical

critical

high

high

high

critical

critical