CVE-2022-2231
published 2022-06-28CVE-2022-2231: NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.
PriorityP417medium5.5CVSS 3.1
AVLACLPRNUIRSUCNINAH
EPSS
1.23%
65.1th percentile
NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.
Affected
13 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | vim | < vim 2:9.0.0135-1 (bookworm) | vim 2:9.0.0135-1 (bookworm) |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| vim | vim | < 8.2.5169 | 8.2.5169 |
| vim | vim | >= 0 < 2:9.0.0135-1 | 2:9.0.0135-1 |
| vim | vim | >= 0 < 2:9.0.0135-1 | 2:9.0.0135-1 |
| vim | vim | >= 0 < 2:9.0.0135-1 | 2:9.0.0135-1 |
| vim | vim | >= 0 < 2:8.1.2269-1ubuntu5.16 | 2:8.1.2269-1ubuntu5.16 |
| vim | vim | >= 0 < 2:8.2.3995-1ubuntu2.10 | 2:8.2.3995-1ubuntu2.10 |
| vim | vim | >= 0 < 2:7.4.052-1ubuntu3.1+esm11 | 2:7.4.052-1ubuntu3.1+esm11 |
| vim | vim | >= 0 < 2:7.4.1689-3ubuntu1.5+esm19 | 2:7.4.1689-3ubuntu1.5+esm19 |
| vim | vim | >= 0 < 2:8.0.1453-1ubuntu1.13+esm3 | 2:8.0.1453-1ubuntu1.13+esm3 |
| vim | vim_vim | >= unspecified < 8.2 | 8.2 |
CVSS provenance
nvdv3.15.5MEDIUMCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
nvdv3.07.8HIGHCVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:N/A:P
osv7.8HIGH
vendor_ubuntu7.8HIGH
vendor_debian5.5LOW
vendor_redhat5.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
kernel: sched/core: Do not requeue task on CPU excluded from cpus_mask
vendor_redhat·2025-06-18·CVSS 5.5
CVE-2022-50100 [MEDIUM] kernel: sched/core: Do not requeue task on CPU excluded from cpus_mask
kernel: sched/core: Do not requeue task on CPU excluded from cpus_mask
In the Linux kernel, the following vulnerability has been resolved:
sched/core: Do not requeue task on CPU excluded from cpus_mask
The following warning was triggered on a large machine early in boot on
a distribution kernel but the same problem should also affect mainline.
WARNING: CPU: 439 PID: 10 at ../kernel/workqueue.c:2231 process_one_work+0x4d/0x440
Call Trace:
rescuer_thread+0x1f6/0x360
kthread+0x156/0x180
ret_from_fork+0x22/0x30
Commit c6e7bd7afaeb ("sched/core: Optimize ttwu() spinning on p->on_cpu")
optimises ttwu by queueing a task that is descheduling on the wakelist,
but does not check if the task descheduling is still allowed to run on that CPU.
In this warning, the problematic task is a workqueue resc
Ubuntu
Vim vulnerabilities
vendor_ubuntu·2023-08-03·CVSS 7.8
CVE-2022-2208 [HIGH] Vim vulnerabilities
Title: Vim vulnerabilities
Summary: Several security issues were fixed in Vim.
It was discovered that Vim incorrectly handled memory when opening certain
files. If an attacker could trick a user into opening a specially crafted
file, it could cause Vim to crash, or possibly execute arbitrary code. This
issue only affected Ubuntu 22.04 LTS. (CVE-2022-2182)
It was discovered that Vim incorrectly handled memory when deleting buffers
in diff mode. An attacker could possibly use this issue to cause a denial
of service. This issue only affected Ubuntu 20.04 LTS and Ubuntu 22.04 LTS.
(CVE-2022-2208)
It was discovered that Vim incorrectly handled memory access. An attacker
could possibly use this issue to cause the corruption of sensitive
information, a crash, or arbitrary code execution. This
Red Hat
vim: null pointer derefernce in function skipwhite may lead to DoS
vendor_redhat·2022-06-28·CVSS 5.5
CVE-2022-2231 [MEDIUM] CWE-476 vim: null pointer derefernce in function skipwhite may lead to DoS
vim: null pointer derefernce in function skipwhite may lead to DoS
NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.
Package: vim (Red Hat Enterprise Linux 6) - Out of support scope
Package: vim (Red Hat Enterprise Linux 7) - Out of support scope
Package: vim (Red Hat Enterprise Linux 8) - Not affected
Package: vim (Red Hat Enterprise Linux 9) - Not affected
Debian
CVE-2022-2231: vim - NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.
vendor_debian·2022·CVSS 5.5
CVE-2022-2231 [MEDIUM] CVE-2022-2231: vim - NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.
NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.
Scope: local
bookworm: resolved (fixed in 2:9.0.0135-1)
bullseye: open
forky: resolved (fixed in 2:9.0.0135-1)
sid: resolved (fixed in 2:9.0.0135-1)
trixie: resolved (fixed in 2:9.0.0135-1)
OSV
vim vulnerabilities
osv·2023-08-03·CVSS 7.8
CVE-2022-2182 [HIGH] vim vulnerabilities
vim vulnerabilities
It was discovered that Vim incorrectly handled memory when opening certain
files. If an attacker could trick a user into opening a specially crafted
file, it could cause Vim to crash, or possibly execute arbitrary code. This
issue only affected Ubuntu 22.04 LTS. (CVE-2022-2182)
It was discovered that Vim incorrectly handled memory when deleting buffers
in diff mode. An attacker could possibly use this issue to cause a denial
of service. This issue only affected Ubuntu 20.04 LTS and Ubuntu 22.04 LTS.
(CVE-2022-2208)
It was discovered that Vim incorrectly handled memory access. An attacker
could possibly use this issue to cause the corruption of sensitive
information, a crash, or arbitrary code execution. This issue only affected
Ubuntu 14.04 LTS, Ubuntu 18.04 LTS, Ubu
GHSA
GHSA-wwjg-4jv2-95w2: NULL Pointer Dereference in GitHub repository vim/vim prior to 8
ghsa_unreviewed·2022-06-29
CVE-2022-2231 [MEDIUM] CWE-476 GHSA-wwjg-4jv2-95w2: NULL Pointer Dereference in GitHub repository vim/vim prior to 8
NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.
OSV
CVE-2022-2231: NULL Pointer Dereference in GitHub repository vim/vim prior to 8
osv·2022-06-28·CVSS 5.5
CVE-2022-2231 [MEDIUM] CVE-2022-2231: NULL Pointer Dereference in GitHub repository vim/vim prior to 8
NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.
No detection rules found.
No public exploits indexed.
https://github.com/vim/vim/commit/79481367a457951aabd9501b510fd7e3eb29c3d8https://huntr.dev/bounties/8dae6ab4-7a7a-4716-a65c-9b090fa057b5https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GFD2A4YLBR7OIRHTL7CK6YNMEIQ264CN/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U743FMJGFQ35GBPCQ6OWMVZEJPDFVEWM/https://security.gentoo.org/glsa/202208-32https://security.gentoo.org/glsa/202305-16https://github.com/vim/vim/commit/79481367a457951aabd9501b510fd7e3eb29c3d8https://huntr.dev/bounties/8dae6ab4-7a7a-4716-a65c-9b090fa057b5https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GFD2A4YLBR7OIRHTL7CK6YNMEIQ264CN/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U743FMJGFQ35GBPCQ6OWMVZEJPDFVEWM/https://security.gentoo.org/glsa/202208-32https://security.gentoo.org/glsa/202305-16
2022-06-28
Published