vim is vulnerable to a heap-based out-of-bounds read when running an arbitrary malicious script.
Created vim tracking bugs for this issue:
Affects: fedora-all [bug 2044142]
Marked services affected/delegated. Affected code is present, however impact is low and actual occurrence of flaw is unlikely at best.