A use-after-free possible. Reference: https://huntr.dev/bounties/47dded34-3767-4725-8c7c-9dcb68c70b36 Upstream fix : https://github.com/vim/vim/commit/9f1a39a5d1cd7989ada2d1cb32f97d84360e050f https://github.com/vim/vim/commit/143367256836b0f69881dc0c65ff165ae091dbc5 (additional required fix)
Created vim tracking bugs for this issue: Affects: fedora-all [bug 2039845]
Vim versions prior to 8.2 do not seem to be vulnerable to this flaw
The flaw was introduced in v8.2.3902. Older versions are not impacted by this flaw.