A heap-based buffer overflow vulnerability was found in GitHub repository vim/vim prior to 901376 in Vim's utf_ptr2char() function of the src/mbytec file This flaw occurs because there is access to invalid memory with put in visual block mode An attacker can trick a user into opening a specially crafted file, triggering an out-of-bounds read t ...
A heap buffer overflow vulnerability was found in vim's ins_compl_infercase_gettext() function of the src/insexpandc file This flaw occurs when vim tries to access uninitialized memory when completing a long line This flaw allows an attacker to trick a user into opening a specially crafted file, triggering a heap-based buffer overflow that cause ...