Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-2426

Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 9.0.1499.

Published

2023-04-29T22:15:09.243

Last Modified

2024-11-21T07:58:35.860

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 5.5 (MEDIUM)

Weaknesses

Type: Secondary
CWE-823
Type: Secondary
NVD-CWE-Other

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	vim	vim	< 9.0.1499	Yes

References

https://github.com/vim/vim/commit/caf642c25de526229264cab9425e7c9979f3509b Patch ([email protected])
https://huntr.dev/bounties/3451be4c-91c8-4d08-926b-cbff7396f425 Exploit ([email protected])
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LOJP6M7ZTKZQYOGVOOAY6TIE6ACBJL55/ ([email protected])
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PCLJN4QINITA3ZASKLEJ64C5TFNKELMO/ ([email protected])
https://support.apple.com/kb/HT213844 ([email protected])
https://support.apple.com/kb/HT213845 ([email protected])
https://github.com/vim/vim/commit/caf642c25de526229264cab9425e7c9979f3509b Patch (af854a3a-2127-422b-91ae-364da2661108)
https://huntr.dev/bounties/3451be4c-91c8-4d08-926b-cbff7396f425 Exploit (af854a3a-2127-422b-91ae-364da2661108)
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LOJP6M7ZTKZQYOGVOOAY6TIE6ACBJL55/ (af854a3a-2127-422b-91ae-364da2661108)
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PCLJN4QINITA3ZASKLEJ64C5TFNKELMO/ (af854a3a-2127-422b-91ae-364da2661108)
https://support.apple.com/kb/HT213844 (af854a3a-2127-422b-91ae-364da2661108)
https://support.apple.com/kb/HT213845 (af854a3a-2127-422b-91ae-364da2661108)