CVE-2022-1942
published 2022-05-31CVE-2022-1942: Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.
PriorityP336high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
EPSS
1.56%
72.1th percentile
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.
Affected
17 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | macos | < 13.0 | 13.0 |
| apple | macos_ventura | — | — |
| debian | debian_linux | — | — |
| debian | vim | < vim 2:9.0.0135-1 (bookworm) | vim 2:9.0.0135-1 (bookworm) |
| fedoraproject | fedora | — | — |
| happyworm | jplayer | >= 0 < 2.3.0 | 2.3.0 |
| vim | vim | < 8.2.5043 | 8.2.5043 |
| vim | vim | >= 0 < 2:8.2.2434-3+deb11u2 | 2:8.2.2434-3+deb11u2 |
| vim | vim | >= 0 < 2:9.0.0135-1 | 2:9.0.0135-1 |
| vim | vim | >= 0 < 2:9.0.0135-1 | 2:9.0.0135-1 |
| vim | vim | >= 0 < 2:9.0.0135-1 | 2:9.0.0135-1 |
| vim | vim | >= 0 < 2:8.0.1453-1ubuntu1.12 | 2:8.0.1453-1ubuntu1.12 |
| vim | vim | >= 0 < 2:8.1.2269-1ubuntu5.13 | 2:8.1.2269-1ubuntu5.13 |
| vim | vim | >= 0 < 2:8.2.3995-1ubuntu2.5 | 2:8.2.3995-1ubuntu2.5 |
| vim | vim | >= 0 < 2:7.4.052-1ubuntu3.1+esm8 | 2:7.4.052-1ubuntu3.1+esm8 |
| vim | vim | >= 0 < 2:7.4.1689-3ubuntu1.5+esm10 | 2:7.4.1689-3ubuntu1.5+esm10 |
| vim | vim_vim | >= unspecified < 8.2 | 8.2 |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv3.07.8HIGHCVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
ghsa4.3MEDIUM
osv7.8HIGH
vendor_debian7.8HIGH
vendor_redhat7.8HIGH
vendor_ubuntu7.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
Vim vulnerabilities
vendor_ubuntu·2023-04-04·CVSS 7.8
CVE-2022-1968 [HIGH] Vim vulnerabilities
Title: Vim vulnerabilities
Summary: Several security issues were fixed in Vim.
It was discovered that Vim incorrectly handled memory when opening certain
files. If an attacker could trick a user into opening a specially crafted
file, it could cause Vim to crash, or possible execute arbitrary code. This
issue only affected Ubuntu 14.04 ESM, Ubuntu 18.04 LTS, Ubuntu 20.04 LTS,
and Ubuntu 22.04 LTS. (CVE-2022-0413, CVE-2022-1629, CVE-2022-1674,
CVE-2022-1733, CVE-2022-1735, CVE-2022-1785, CVE-2022-1796, CVE-2022-1851,
CVE-2022-1898, CVE-2022-1942, CVE-2022-1968, CVE-2022-2124, CVE-2022-2125,
CVE-2022-2126, CVE-2022-2129, CVE-2022-2175, CVE-2022-2183, CVE-2022-2206,
CVE-2022-2304, CVE-2022-2345, CVE-2022-2581)
It was discovered that Vim incorrectly handled memory when opening certain
files.
Apple
CVE-2022-1942: macOS Ventura 13
vendor_apple·2022-10-24·CVSS 7.8
CVE-2022-1942 [HIGH] CVE-2022-1942: macOS Ventura 13
Apple Security Update: About the security content of macOS Ventura 13
Product: macOS Ventura
Version: 13
CVE: CVE-2022-1942
Component: CVE-2022-1942
Ubuntu
Vim vulnerabilities
vendor_ubuntu·2022-07-08·CVSS 7.8
CVE-2022-1968 [HIGH] Vim vulnerabilities
Title: Vim vulnerabilities
Summary: Several security issues were fixed in Vim.
It was discovered that Vim incorrectly handled memory access. An attacker
could potentially use this issue to cause the program to crash, use unexpected
values, or execute arbitrary code. (CVE-2022-1968)
It was discovered that Vim incorrectly handled memory access. An attacker
could potentially use this issue to cause the corruption of sensitive
information, a crash, or arbitrary code execution.
(CVE-2022-1897, CVE-2022-1942)
Instructions: In general, a standard system update will make all the necessary changes.
Red Hat
vim: out of bounds write in vim_regsub_both()
vendor_redhat·2022-05-31·CVSS 7.8
CVE-2022-1942 [HIGH] CWE-787 vim: out of bounds write in vim_regsub_both()
vim: out of bounds write in vim_regsub_both()
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.
An out-of-bounds write vulnerability was found in Vim's vim_regsub_both() function in the src/regexp.c file. The flaw can open a command-line window from a substitute expression when a text or buffer is locked. This flaw allows an attacker to trick a user into opening a specially crafted file, triggering an out-of-bounds write that causes an application to crash, possibly reading and modifying some amount of memory contents.
Statement: The versions of Vim shipped with Red Hat Enterprise Linux are not affected, because there is no presence of vulnerable code in our code-base.
Red Hat Enterprise Virtualization 4 consumes RHEL-8 vim, and as RHEL-8 is not affected, Hence, RHEV
Debian
CVE-2022-1942: vim - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.
vendor_debian·2022·CVSS 7.8
CVE-2022-1942 [HIGH] CVE-2022-1942: vim - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.
Scope: local
bookworm: resolved (fixed in 2:9.0.0135-1)
bullseye: resolved (fixed in 2:8.2.2434-3+deb11u2)
forky: resolved (fixed in 2:9.0.0135-1)
sid: resolved (fixed in 2:9.0.0135-1)
trixie: resolved (fixed in 2:9.0.0135-1)
OSV
vim vulnerabilities
osv·2023-04-04·CVSS 7.8
CVE-2022-0413 [HIGH] vim vulnerabilities
vim vulnerabilities
It was discovered that Vim incorrectly handled memory when opening certain
files. If an attacker could trick a user into opening a specially crafted
file, it could cause Vim to crash, or possible execute arbitrary code. This
issue only affected Ubuntu 14.04 ESM, Ubuntu 18.04 LTS, Ubuntu 20.04 LTS,
and Ubuntu 22.04 LTS. (CVE-2022-0413, CVE-2022-1629, CVE-2022-1674,
CVE-2022-1733, CVE-2022-1735, CVE-2022-1785, CVE-2022-1796, CVE-2022-1851,
CVE-2022-1898, CVE-2022-1942, CVE-2022-1968, CVE-2022-2124, CVE-2022-2125,
CVE-2022-2126, CVE-2022-2129, CVE-2022-2175, CVE-2022-2183, CVE-2022-2206,
CVE-2022-2304, CVE-2022-2345, CVE-2022-2581)
It was discovered that Vim incorrectly handled memory when opening certain
files. If an attacker could trick a user into opening a specially
OSV
vim vulnerabilities
osv·2022-07-08·CVSS 7.8
CVE-2022-1968 [HIGH] vim vulnerabilities
vim vulnerabilities
It was discovered that Vim incorrectly handled memory access. An attacker
could potentially use this issue to cause the program to crash, use unexpected
values, or execute arbitrary code. (CVE-2022-1968)
It was discovered that Vim incorrectly handled memory access. An attacker
could potentially use this issue to cause the corruption of sensitive
information, a crash, or arbitrary code execution.
(CVE-2022-1897, CVE-2022-1942)
GHSA
GHSA-fj94-39w8-g69w: Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8
ghsa_unreviewed·2022-06-01
CVE-2022-1942 [HIGH] CWE-122 GHSA-fj94-39w8-g69w: Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.
OSV
CVE-2022-1942: Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8
osv·2022-05-31·CVSS 7.8
CVE-2022-1942 [HIGH] CVE-2022-1942: Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.
GHSA
jplayer Cross Site Scripting vulnerability
ghsa·2022-05-17·CVSS 4.3
CVE-2013-2022 [MEDIUM] CWE-79 jplayer Cross Site Scripting vulnerability
jplayer Cross Site Scripting vulnerability
Multiple cross-site scripting (XSS) vulnerabilities in actionscript/Jplayer.as in the Flash SWF component (jplayer.swf) in jPlayer before 2.3.0 allow remote attackers to inject arbitrary web script or HTML via the (1) jQuery or (2) id parameters, a different vulnerability than CVE-2013-1942 and CVE-2013-2023, as demonstrated by using the alert function in the jQuery parameter. NOTE: these are the same parameters as CVE-2013-1942, but the fix for CVE-2013-1942 uses a blacklist for the jQuery parameter.
No detection rules found.
No public exploits indexed.
http://seclists.org/fulldisclosure/2022/Oct/28http://seclists.org/fulldisclosure/2022/Oct/41https://github.com/vim/vim/commit/71223e2db87c2bf3b09aecb46266b56cda26191dhttps://huntr.dev/bounties/67ca4d3b-9175-43c1-925c-72a7091bc071https://lists.debian.org/debian-lts-announce/2022/11/msg00032.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TYNK6SDCMOLQJOI3B4AOE66P2G2IH4ZM/https://security.gentoo.org/glsa/202208-32https://security.gentoo.org/glsa/202305-16https://support.apple.com/kb/HT213488http://seclists.org/fulldisclosure/2022/Oct/28http://seclists.org/fulldisclosure/2022/Oct/41https://github.com/vim/vim/commit/71223e2db87c2bf3b09aecb46266b56cda26191dhttps://huntr.dev/bounties/67ca4d3b-9175-43c1-925c-72a7091bc071https://lists.debian.org/debian-lts-announce/2022/11/msg00032.htmlhttps://lists.debian.org/debian-lts-announce/2025/03/msg00023.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TYNK6SDCMOLQJOI3B4AOE66P2G2IH4ZM/https://security.gentoo.org/glsa/202208-32https://security.gentoo.org/glsa/202305-16https://support.apple.com/kb/HT213488
2022-05-31
Published