7.5
CVSSv2

CVE-2017-5953

Published: 10/02/2017 Updated: 11/06/2019
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Summary

vim before patch 8.0.0322 does not properly validate values for tree length when handling a spell file, which may result in an integer overflow at a memory allocation site and a resultant buffer overflow.

Affected Products

Vendor Product Versions
VimVim8.0.0055

Vendor Advisories

Debian Bug report logs - #854969 vim: CVE-2017-5953 does not properly validate values for tree length when handling a spell file Package: vim; Maintainer for vim is Debian Vim Maintainers <team+vim@trackerdebianorg>; Source for vim is src:vim (PTS, buildd, popcon) Reported by: Markus Koschany <apo@debianorg> Date: ...
Several security issues were fixed in Vim ...
vim before patch 800322 does not properly validate values for tree length when handling a spell file, which may result in an integer overflow at a memory allocation site and a resultant buffer overflow ...
An integer overflow flaw was found in the way vim handled tree length values when reading an undo file This bug could result in vim crashing when trying to process corrupted undo files (CVE-2017-6350 ) An integer overflow flaw was found in the way vim handled undo files This bug could result in vim crashing when trying to process corrupted undo ...
Arch Linux Security Advisory ASA-201702-13 ========================================== Severity: Medium Date : 2017-02-15 CVE-ID : CVE-2017-5953 Package : vim Type : arbitrary code execution Remote : No Link : securityarchlinuxorg/AVG-174 Summary ======= The package vim before version 800322-1 is vulnerable to arbitrary cod ...
Arch Linux Security Advisory ASA-201702-12 ========================================== Severity: Medium Date : 2017-02-15 CVE-ID : CVE-2017-5953 Package : gvim Type : arbitrary code execution Remote : No Link : securityarchlinuxorg/AVG-174 Summary ======= The package gvim before version 800322-1 is vulnerable to arbitrary c ...
It was found that vim does not properly validate values for tree length when handling a spell file, which may result in an integer overflow at a memory allocation site and a resultant buffer overflow ...