Bug 2176457 (CVE-2023-1175) - CVE-2023-1175 vim: Incorrect Calculation of Buffer Size
Summary: CVE-2023-1175 vim: Incorrect Calculation of Buffer Size
Keywords:
Status: NEW
Alias: CVE-2023-1175
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
low
low
Target Milestone: ---
Assignee: Nobody
QA Contact:
URL:
Whiteboard:
Depends On: 2176458 2177975 2177976
Blocks: 2176460
TreeView+ depends on / blocked
 
Reported: 2023-03-08 12:59 UTC by Pedro Sampaio
Modified: 2023-07-07 08:30 UTC (History)
2 users (show)

Fixed In Version: vim 9.0.1378
Clone Of:
Environment:
Last Closed:
Embargoed:


Attachments (Terms of Use)

Description Pedro Sampaio 2023-03-08 12:59:02 UTC
Incorrect Calculation of Buffer Size in GitHub repository vim/vim prior to 9.0.1378.

References:

https://github.com/vim/vim/commit/c99cbf8f289bdda5d4a77d7ec415850a520330ba
https://huntr.dev/bounties/7e93fc17-92eb-4ae7-b01a-93bb460b643e

Comment 1 Pedro Sampaio 2023-03-08 12:59:17 UTC
Created vim tracking bugs for this issue:

Affects: fedora-all [bug 2176458]


Note You need to log in before you can comment on or make changes to this bug.