2339074 – (CVE-2025-24014) CVE-2025-24014 vim: segmentation fault in win_line() in Vim < 9.1.1043

Bug 2339074 (CVE-2025-24014) - CVE-2025-24014 vim: segmentation fault in win_line() in Vim < 9.1.1043

Summary: CVE-2025-24014 vim: segmentation fault in win_line() in Vim < 9.1.1043

Keywords:
Status:	NEW
Alias:	CVE-2025-24014
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	low
Severity:	low
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2025-01-20 23:00 UTC by OSIDB Bzimport
Modified:	2025-01-27 18:09 UTC (History)
CC List:	5 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2025-01-20 23:00:59 UTC

Vim is an open source, command line text editor. A segmentation fault was found in Vim before 9.1.1043. In silent Ex mode (-s -e), Vim typically doesn't show a screen and just operates silently in batch mode. However, it is still possible to trigger the function that handles the scrolling of a gui version of Vim by feeding some binary characters to Vim. The function that handles the scrolling however may be triggering a redraw, which will access the ScreenLines pointer, even so this variable hasn't been allocated (since there is no screen). This vulnerability is fixed in 9.1.1043.

Note You need to log in before you can comment on or make changes to this bug.