Oval Definition:oval:com.redhat.rhsa:def:20220366
Revision Date:2022-02-01Version:639
Title:RHSA-2022:0366: vim security update (Moderate)
Description:Vim (Vi IMproved) is an updated and improved version of the vi editor.

Security Fix(es):

  • vim: heap-based buffer overflow in win_redr_status() in drawscreen.c (CVE-2021-3872)

  • vim: illegal memory access in find_start_brace() in cindent.c when C-indenting (CVE-2021-3984)

  • vim: heap-based buffer overflow in find_help_tags() in help.c (CVE-2021-4019)

  • vim: use-after-free in win_linetabsize() (CVE-2021-4192)

  • vim: out-of-bound read in getvcol() (CVE-2021-4193)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2021-3872
    CVE-2021-3984
    CVE-2021-4019
    CVE-2021-4192
    CVE-2021-4193
    RHSA-2022:0366
    Platform(s):Red Hat Enterprise Linux 8
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 8 is installed
  • OR Red Hat CoreOS 4 is installed
  • AND
  • vim-X11 is earlier than 2:8.0.1763-16.el8_5.4
  • AND vim-X11 is signed with Red Hat redhatrelease2 key
  • vim-common is earlier than 2:8.0.1763-16.el8_5.4
  • AND vim-common is signed with Red Hat redhatrelease2 key
  • vim-enhanced is earlier than 2:8.0.1763-16.el8_5.4
  • AND vim-enhanced is signed with Red Hat redhatrelease2 key
  • vim-filesystem is earlier than 2:8.0.1763-16.el8_5.4
  • AND vim-filesystem is signed with Red Hat redhatrelease2 key
  • vim-minimal is earlier than 2:8.0.1763-16.el8_5.4
  • AND vim-minimal is signed with Red Hat redhatrelease2 key
    • BACK