Bug 2139086 (CVE-2022-3705) - CVE-2022-3705 vim: a use after free in the function qf_update_buffer
Summary: CVE-2022-3705 vim: a use after free in the function qf_update_buffer
Keywords:
Status: NEW
Alias: CVE-2022-3705
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
low
low
Target Milestone: ---
Assignee: Nobody
QA Contact:
URL:
Whiteboard:
Depends On: 2139087 2139097 2139098
Blocks: 2138139
TreeView+ depends on / blocked
 
Reported: 2022-11-01 11:59 UTC by Marian Rehak
Modified: 2023-07-07 08:34 UTC (History)
1 user (show)

Fixed In Version: vim 9.0.0805
Doc Type: If docs needed, set a value
Doc Text:
A use-after-free flaw was found in the qf_update_buffer function in vim. This issue allows a specially crafted file to crash a program, use unexpected values, or execute code.
Clone Of:
Environment:
Last Closed:
Embargoed:


Attachments (Terms of Use)

Description Marian Rehak 2022-11-01 11:59:47 UTC
Affected by this issue is the function qf_update_buffer of the file quickfix.c of the component autocmd Handler. The manipulation leads to use after free. The attack may be launched remotely.

Comment 1 Marian Rehak 2022-11-01 12:00:02 UTC
Created vim tracking bugs for this issue:

Affects: fedora-all [bug 2139087]


Note You need to log in before you can comment on or make changes to this bug.