Back to bug 2123714
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| TEJ RATHI | 2022-09-02 11:59:32 UTC | Depends On | 2123715 | |
| TEJ RATHI | 2022-09-02 12:01:09 UTC | Blocks | 2122661 | |
| TEJ RATHI | 2022-09-05 07:14:07 UTC | Fixed In Version | vim 9.0.0260 | |
| TEJ RATHI | 2022-09-05 07:22:43 UTC | Depends On | 2124182 | |
| TEJ RATHI | 2022-09-05 07:27:16 UTC | Doc Text | A heap use-after-free vulnerability was found in Vim's qf_fill_buffer() function of the src/quickfix.c file. This flaw occurs because vim is using freed memory when using 'quickfixtextfunc' recursively. This flaw allows an attacker to trick a user into opening a specially crafted file, triggering a heap use-after-free that causes an application to crash, possibly executing code and corrupting memory. | |
| RaTasha Tillery-Smith | 2022-09-06 14:39:51 UTC | Doc Text | A heap use-after-free vulnerability was found in Vim's qf_fill_buffer() function of the src/quickfix.c file. This flaw occurs because vim is using freed memory when using 'quickfixtextfunc' recursively. This flaw allows an attacker to trick a user into opening a specially crafted file, triggering a heap use-after-free that causes an application to crash, possibly executing code and corrupting memory. | A heap use-after-free vulnerability was found in vim's qf_fill_buffer() function of the src/quickfix.c file. The issue occurs because vim uses freed memory when recursively using 'quickfixtextfunc.' This flaw allows an attacker to trick a user into opening a specially crafted file, triggering a heap use-after-free that causes an application to crash, possibly executing code and corrupting memory. |
| Red Hat Bugzilla | 2023-07-07 08:32:40 UTC | Assignee | security-response-team | nobody |
Back to bug 2123714