Hide Forgot
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1376. References: https://github.com/vim/vim/commit/1c73b65229c25e3c1fd8824ba958f7cc4d604f9c https://huntr.dev/bounties/286e0090-e654-46d2-ac60-29f81799d0a4
Created vim tracking bugs for this issue: Affects: fedora-all [bug 2176463]
Hi, the reproducer seems to be a vimscript combination - would you mind explaining why the vulnerability is not low, but medium?
In reply to comment #2: > Hi, > > the reproducer seems to be a vimscript combination - would you mind > explaining why the vulnerability is not low, but medium? Initial triage set it to medium by description. Lowered to low now.