Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-48232

Vim is an open source command line text editor. A floating point exception may occur when calculating the line offset for overlong lines and smooth scrolling is enabled and the cpo-settings include the 'n' flag. This may happen when a window border is present and when the wrapped line continues on the next physical line directly in the window border because the 'cpo' setting includes the 'n' flag. Only users with non-default settings are affected and the exception should only result in a crash. This issue has been addressed in commit `cb0b99f0` which has been included in release version 9.0.2107. Users are advised to upgrade. There are no known workarounds for this vulnerability.

Published

2023-11-16T23:15:08.793

Last Modified

2024-11-21T08:31:15.910

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 3.9 (LOW)

Weaknesses

Type: Secondary
CWE-755

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	vim	vim	< 9.0.2107	Yes
Operating System	fedoraproject	fedora	37	Yes
Operating System	fedoraproject	fedora	38	Yes
Operating System	fedoraproject	fedora	39	Yes

References

http://www.openwall.com/lists/oss-security/2023/11/16/1 Mailing List ([email protected])
https://github.com/vim/vim/commit/cb0b99f0672d8446585d26e998343dceca17d1ce Patch ([email protected])
https://github.com/vim/vim/security/advisories/GHSA-f6cx-x634-hqpw Vendor Advisory ([email protected])
https://lists.fedoraproject.org/archives/list/[email protected]/message/4UJAK2W5S7G75ETDAEM3BDUCVSXCEGRD/ Mailing List, Third Party Advisory ([email protected])
https://lists.fedoraproject.org/archives/list/[email protected]/message/M3VQF7CL3V6FGSEW37WNDFBRRILR65AK/ Mailing List, Third Party Advisory ([email protected])
https://lists.fedoraproject.org/archives/list/[email protected]/message/VNRNYLWXZOGTYWE5HMFNQ5FVE3HBUHF6/ Mailing List, Third Party Advisory ([email protected])
https://security.netapp.com/advisory/ntap-20231227-0006/ Third Party Advisory ([email protected])
http://www.openwall.com/lists/oss-security/2023/11/16/1 Mailing List (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/vim/vim/commit/cb0b99f0672d8446585d26e998343dceca17d1ce Patch (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/vim/vim/security/advisories/GHSA-f6cx-x634-hqpw Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://lists.fedoraproject.org/archives/list/[email protected]/message/4UJAK2W5S7G75ETDAEM3BDUCVSXCEGRD/ Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://lists.fedoraproject.org/archives/list/[email protected]/message/M3VQF7CL3V6FGSEW37WNDFBRRILR65AK/ Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://lists.fedoraproject.org/archives/list/[email protected]/message/VNRNYLWXZOGTYWE5HMFNQ5FVE3HBUHF6/ Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://security.netapp.com/advisory/ntap-20231227-0006/ Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)