File _patchinfo of Package patchinfo.26976

Overview Repositories Revisions Requests Users Attributes Meta

File _patchinfo of Package patchinfo.26976

<patchinfo incident="26976">
  <issue tracker="bnc" id="1203152">VUL-1: CVE-2022-2982: vim: use after free in qf_fill_buffer()</issue>
  <issue tracker="bnc" id="1203820">VUL-0: CVE-2022-3324: vim: Stack-based Buffer Overflow in prior to 9.0.0598.</issue>
  <issue tracker="bnc" id="1203272">VUL-1: CVE-2022-3153: vim: NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.0404.</issue>
  <issue tracker="bnc" id="1203799">VUL-1: CVE-2022-3278: vim: NULL pointer dereference in eval_next_non_blank() in eval.c</issue>
  <issue tracker="bnc" id="1204779">VUL-0: CVE-2022-3705: vim: use after free in function qf_update_buffer of the file quickfix.c</issue>
  <issue tracker="bnc" id="1203796">VUL-1: CVE-2022-3296: vim: stack out of bounds read in ex_finally() in ex_eval.c</issue>
  <issue tracker="bnc" id="1203110">VUL-1: CVE-2022-3099: vim: Use After Free in ex_docmd.c</issue>
  <issue tracker="bnc" id="1203924">VUL-1: CVE-2022-3352: vim: vim: use after free</issue>
  <issue tracker="bnc" id="1203797">VUL-1: CVE-2022-3297: vim: use-after-free in process_next_cpt_value() at insexpand.c</issue>
  <issue tracker="bnc" id="1203155">VUL-1: CVE-2022-2980: vim: null pointer dereference in do_mouse()</issue>
  <issue tracker="bnc" id="1202962">VUL-1: CVE-2022-3037: vim: Use After Free in vim prior to 9.0.0321</issue>
  <issue tracker="bnc" id="1203509">VUL-1: CVE-2022-3235: vim: Use After Free in GitHub prior to 9.0.0490.</issue>
  <issue tracker="bnc" id="1203508">VUL-0: CVE-2022-3234: vim: Heap-based Buffer Overflow prior to 9.0.0483.</issue>
  <issue tracker="bnc" id="1192478">VUL-1: CVE-2021-3928: vim: vim is vulnerable to Stack-based Buffer Overflow</issue>
  <issue tracker="bnc" id="1203194">VUL-1: CVE-2022-3134: vim: use after free in do_tag()</issue>
  <issue tracker="cve" id="2022-3278"/>
  <issue tracker="cve" id="2022-3324"/>
  <issue tracker="cve" id="2022-2980"/>
  <issue tracker="cve" id="2022-3297"/>
  <issue tracker="cve" id="2022-3235"/>
  <issue tracker="cve" id="2022-3296"/>
  <issue tracker="cve" id="2022-3099"/>
  <issue tracker="cve" id="2021-3928"/>
  <issue tracker="cve" id="2022-3134"/>
  <issue tracker="cve" id="2022-3153"/>
  <issue tracker="cve" id="2022-2982"/>
  <issue tracker="cve" id="2022-3352"/>
  <issue tracker="cve" id="2022-3705"/>
  <issue tracker="cve" id="2022-3037"/>
  <issue tracker="cve" id="2022-3234"/>
  <packager>bzoltan1</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for vim</summary>
  <description>This update for vim fixes the following issues:

Updated to version 9.0 with patch level 0814:

- CVE-2021-3928: Fixed stack-based buffer overflow (bsc#1192478).
- CVE-2022-3234: Fixed heap-based buffer overflow (bsc#1203508).
- CVE-2022-3235: Fixed use-after-free (bsc#1203509).
- CVE-2022-3324: Fixed stack-based buffer overflow (bsc#1203820).
- CVE-2022-3705: Fixed use-after-free in function qf_update_buffer of the file quickfix.c (bsc#1204779).
- CVE-2022-2982: Fixed use-after-free in qf_fill_buffer() (bsc#1203152).
- CVE-2022-3296: Fixed stack out of bounds read in ex_finally() in ex_eval.c (bsc#1203796).
- CVE-2022-3297: Fixed use-after-free in process_next_cpt_value() at insexpand.c (bsc#1203797).
- CVE-2022-3099: Fixed use-after-free in ex_docmd.c (bsc#1203110).
- CVE-2022-3134: Fixed use-after-free in do_tag() (bsc#1203194).
- CVE-2022-3153: Fixed NULL pointer dereference (bsc#1203272).
- CVE-2022-3278: Fixed NULL pointer dereference in eval_next_non_blank() in eval.c (bsc#1203799).
- CVE-2022-3352: Fixed use-after-free (bsc#1203924).
- CVE-2022-2980: Fixed NULL pointer dereference in do_mouse() (bsc#1203155).
- CVE-2022-3037: Fixed use-after-free (bsc#1202962).
</description>
</patchinfo>

Places

File _patchinfo of Package patchinfo.26976

Places