It exists that Vim incorrectly handled certain files.
An attacker could possibly use this issue to execute arbitrary code.
This issue only affected Ubuntu 16.04 LTS. (CVE-2017-5953)
Debian Bug report logs -
#854969
vim: CVE-2017-5953 does not properly validate values for tree length when handling a spell file
Package:
vim;
Maintainer for vim is Debian Vim Maintainers <team+vim@trackerdebianorg>; Source for vim is src:vim (PTS, buildd, popcon)
Reported by: Markus Koschany <apo@debianorg>
Date: ...
An integer overflow flaw was found in the way vim handled tree length values when reading an undo file This bug could result in vim crashing when trying to process corrupted undo files (CVE-2017-6350)
An integer overflow flaw was found in the way vim handled undo files This bug could result in vim crashing when trying to process corrupted undo f ...
vim before patch 800322 does not properly validate values for tree length when handling a spell file, which may result in an integer overflow at a memory allocation site and a resultant buffer overflow ...
It was found that vim does not properly validate values for tree length when handling a spell file, which may result in an integer overflow at a memory allocation site and a resultant buffer overflow ...
Vulmon