Oval Definition:oval:org.opensuse.security:def:119136
Revision Date:2022-03-04Version:1
Title:Security update for vim (Important)
Description:

This update for vim fixes the following issues:

- CVE-2022-0318: Fixed heap-based buffer overflow (bsc#1195004). - CVE-2021-3796: Fixed use-after-free in nv_replace() in normal.c (bsc#1190570). - CVE-2021-3872: Fixed heap-based buffer overflow in win_redr_status() drawscreen.c (bsc#1191893). - CVE-2021-3927: Fixed heap-based buffer overflow (bsc#1192481). - CVE-2021-3928: Fixed stack-based buffer overflow (bsc#1192478). - CVE-2021-4019: Fixed heap-based buffer overflow (bsc#1193294). - CVE-2021-3984: Fixed illegal memory access when C-indenting could have led to heap buffer overflow (bsc#1193298). - CVE-2021-3778: Fixed heap-based buffer overflow in regexp_nfa.c (bsc#1190533). - CVE-2021-4193: Fixed out-of-bounds read (bsc#1194216). - CVE-2021-46059: Fixed pointer dereference vulnerability via the vim_regexec_multi function at regexp.c (bsc#1194556). - CVE-2022-0319: Fixded out-of-bounds read (bsc#1195066). - CVE-2022-0351: Fixed uncontrolled recursion in eval7() (bsc#1195126). - CVE-2022-0361: Fixed buffer overflow (bsc#1195126). - CVE-2022-0413: Fixed use-after-free in src/ex_cmds.c (bsc#1195356).
Family:unixClass:patch
Status:Reference(s):1190533
1190570
1191893
1192478
1192481
1193294
1193298
1194216
1194556
1195004
1195066
1195126
1195202
1195356
CVE-2021-3778
CVE-2021-3796
CVE-2021-3872
CVE-2021-3927
CVE-2021-3928
CVE-2021-3984
CVE-2021-4019
CVE-2021-4193
CVE-2021-46059
CVE-2022-0318
CVE-2022-0319
CVE-2022-0351
CVE-2022-0361
CVE-2022-0413
SUSE-SU-2022:0736-1
Platform(s):SUSE Linux Enterprise Real Time 15 SP2
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Real Time 15 SP2 is installed
  • AND Package Information
  • gvim-8.0.1568-5.17.1 is installed
  • OR vim-8.0.1568-5.17.1 is installed
  • OR vim-data-8.0.1568-5.17.1 is installed
  • OR vim-data-common-8.0.1568-5.17.1 is installed
    • BACK