Bug 2129371 (CVE-2022-3235) - CVE-2022-3235 vim: Use After Free
Summary: CVE-2022-3235 vim: Use After Free
Keywords:
Status: NEW
Alias: CVE-2022-3235
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
low
low
Target Milestone: ---
Assignee: Nobody
QA Contact:
URL:
Whiteboard:
Depends On: 2130583 2132394 2132395
Blocks: 2128418
TreeView+ depends on / blocked
 
Reported: 2022-09-23 13:50 UTC by Zack Miele
Modified: 2023-07-07 08:28 UTC (History)
3 users (show)

Fixed In Version: vim 9.0.0490
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:
Embargoed:


Attachments (Terms of Use)

Description Zack Miele 2022-09-23 13:50:49 UTC
Use After Free in GitHub repository vim/vim prior to 9.0.0490.

https://huntr.dev/bounties/96d5f7a0-a834-4571-b73b-0fe523b941af
https://github.com/vim/vim/commit/1c3dd8ddcba63c1af5112e567215b3cec2de11d0

Comment 1 Zack Miele 2022-09-28 13:59:42 UTC
Created vim tracking bugs for this issue:

Affects: fedora-all [bug 2130583]


Note You need to log in before you can comment on or make changes to this bug.