Access of Memory Location Before Start of Buffer in Conda vim prior to 8.2. Reference: https://huntr.dev/bounties/8b36db58-b65c-4298-be7f-40b9e37fd161 Upstream patch: https://github.com/vim/vim/commit/fe6fb267e6ee5c5da2f41889e4e0e0ac5bf4b89d
Created vim tracking bugs for this issue: Affects: fedora-all [bug 2046437]
Marking services affected/delegated for Yet Another Vim Flaw that is low/moderate in severity and unlikely to occur.
Red Hat Product Security has rated this issue as having a Low security impact, because the "victim" has to run an untrusted file IN SCRIPT MODE. Someone who is running untrusted files in script mode is equivalent to someone just taking a random python script and running it. Since Red Hat Enterprise Linux 6, 7 are Out-of-Support-Scope for Low/Moderate flaws, the issue is not currently planned to be addressed in future updates for RHEL-6,7. Only Important and Critical severity flaws will be addressed at this time. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/ and Red Hat Enterprise Linux Life Cycle & Updates Policy: https://access.redhat.com/support/policy/updates/errata/.