Published: 29/04/2023 Updated: 23/12/2023

CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8

VMScore: 0

Use of Out-of-range Pointer Offset in GitHub repository vim/vim before 9.0.1499.

Vulnerable Product	Search on Vulmon	Subscribe to Product
vim vim

Debian Bug report logs - #1035323 vim: CVE-2023-2426 Package: src:vim; Maintainer for src:vim is Debian Vim Maintainers <team+vim@trackerdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sun, 30 Apr 2023 20:42:01 UTC Severity: important Tags: security, upstream Found in version vim/2:901378 ...

Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 901499 (CVE-2023-2426) NULL Pointer Dereference in GitHub repository vim/vim prior to 901531 (CVE-2023-2609) Integer Overflow or Wraparound in GitHub repository vim/vim prior to 901532 (CVE-2023-2610) ...

DescriptionThe MITRE CVE dictionary describes this issue as: Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 901499 ...

CWE-823 https://huntr.dev/bounties/3451be4c-91c8-4d08-926b-cbff7396f425 https://github.com/vim/vim/commit/caf642c25de526229264cab9425e7c9979f3509b https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LOJP6M7ZTKZQYOGVOOAY6TIE6ACBJL55/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PCLJN4QINITA3ZASKLEJ64C5TFNKELMO/https://support.apple.com/kb/HT213844 https://support.apple.com/kb/HT213845 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1035323 https://nvd.nist.gov https://alas.aws.amazon.com/ALAS-2023-1761.html

CVE-2023-2426

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect