Back to bug 2119864
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Guilherme de Almeida Suckevicz | 2022-08-19 17:21:59 UTC | Blocks | 2119865 | |
| Guilherme de Almeida Suckevicz | 2022-08-19 17:22:50 UTC | Depends On | 2119866 | |
| Guilherme de Almeida Suckevicz | 2022-08-26 13:57:05 UTC | Doc Text | An use-after-free vulnerability was found in Vim in the find_var_also_in_script function in the evalvars.c file. This issue occurs because an already freed memory is used when a specially crafted input is processed. This flaw allows an attacker who can trick a user into opening a specially crafted file into triggering the use-after-free, and cause the application to crash, possibly executing code and corrupting memory. | |
| Guilherme de Almeida Suckevicz | 2022-08-26 13:57:57 UTC | Depends On | 2121748 | |
| RaTasha Tillery-Smith | 2022-08-26 15:54:32 UTC | Doc Text | An use-after-free vulnerability was found in Vim in the find_var_also_in_script function in the evalvars.c file. This issue occurs because an already freed memory is used when a specially crafted input is processed. This flaw allows an attacker who can trick a user into opening a specially crafted file into triggering the use-after-free, and cause the application to crash, possibly executing code and corrupting memory. | A use-after-free vulnerability was found in Vim in the find_var_also_in_script function in the evalvars.c file. This issue occurs because an already freed memory is used when a specially crafted input is processed. This flaw allows an attacker who can trick a user into opening a specially crafted file into triggering the use-after-free, causing the application to crash, possibly executing code and corrupting memory. |
| Guilherme de Almeida Suckevicz | 2022-08-26 16:24:12 UTC | Fixed In Version | vim 9.0.0225 | |
| Red Hat Bugzilla | 2023-07-07 08:35:56 UTC | Assignee | security-response-team | nobody |
Back to bug 2119864