Back to bug 2106787
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Guilherme de Almeida Suckevicz | 2022-07-13 14:11:48 UTC | Blocks | 2106038 | |
| Guilherme de Almeida Suckevicz | 2022-07-13 14:41:11 UTC | Fixed In Version | vim 9.0.0046 | |
| Guilherme de Almeida Suckevicz | 2022-07-14 15:00:07 UTC | Doc Text | A heap-based buffer overflow was found in Vim in the ins_compl_add function in the insexpand.c file. This issue occurs because of a read past the end of a buffer when a specially crafted input is processed. This flaw allows an attacker, who is able to trick an user into opening a specially crafted file, to trigger the heap-based buffer overflow and cause the application to crash, possibly executing code and corrupting memory. | |
| Guilherme de Almeida Suckevicz | 2022-07-14 17:16:00 UTC | Depends On | 2107299, 2107298 | |
| RaTasha Tillery-Smith | 2022-07-14 19:11:08 UTC | Doc Text | A heap-based buffer overflow was found in Vim in the ins_compl_add function in the insexpand.c file. This issue occurs because of a read past the end of a buffer when a specially crafted input is processed. This flaw allows an attacker, who is able to trick an user into opening a specially crafted file, to trigger the heap-based buffer overflow and cause the application to crash, possibly executing code and corrupting memory. | A heap-based buffer overflow was found in Vim in the ins_compl_add function in the insexpand.c file. This issue occurs due to a read past the end of a buffer when a specially crafted input is processed. This flaw allows an attacker who can trick a user into opening a specially crafted file into triggering the heap-based buffer overflow, causing the application to crash, possibly executing code and corrupting memory. |
| Red Hat Bugzilla | 2023-07-07 08:29:01 UTC | Assignee | security-response-team | nobody |
Back to bug 2106787