CVE-2024-45306 — Heap-based Buffer Overflow in VIM

CWE-122 — Heap-based Buffer Overflow CWE-787 — Out-of-bounds Write11 documents5 sources

Severity

5.5MEDIUMNVD

EPSS

0.1%

top 84.63%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

VIM Debian VIM Apple Ios18.2 AND Ipados18.2 +6 more

Timeline

PublishedSep 2

Latest updateDec 11

Description

Vim is an open source, command line text editor. Patch v9.1.0038 optimized how the cursor position is calculated and removed a loop, that verified that the cursor position always points inside a line and does not become invalid by pointing beyond the end of a line. Back then we assumed this loop is unnecessary. However, this change made it possible that the cursor position stays invalid and points beyond the end of a line, which would eventually cause a heap-buffer-overflow when trying to access…

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages11 packages

▶NVDvim/vim9.1.0038 — 9.1.0707

▶debiandebian/vim< vim 2:9.1.0709-1 (forky)

▶Debianvim/vim< 2:9.1.0709-1+1

▶CVEListV5vim/vim>= 9.1.0038, < 9.1.0707

▶Appleapple/tvos18.2

Patches

Patch: github.com ↗

🔴Vulnerability Details

OSV

CVE-2024-45306: Vim is an open source, command line text editor↗2024-09-02

▶

📋Vendor Advisories

Apple

CVE-2024-45306: visionOS2.2↗2024-12-11

▶

Apple

CVE-2024-45306: tvOS18.2↗2024-12-11

▶

Apple

CVE-2024-45306: iOS18.2 and iPadOS18.2↗2024-12-11

▶

Apple

CVE-2024-45306: watchOS11.2↗2024-12-11

▶

Apple

CVE-2024-45306: macOS Sequoia 15.2↗2024-12-11

▶