Debian Vim vulnerabilities

236 known vulnerabilities affecting debian/vim.

Total CVEs

236

CISA KEV

Public exploits

Exploited in wild

Severity breakdown

CRITICAL7HIGH40MEDIUM22LOW167

Vulnerabilities

Page 4 of 12

CVE-2023-0512LOWCVSS 7.8fixed in vim 2:9.0.1378-1 (bookworm)2023

CVE-2023-0512 [HIGH] CVE-2023-0512: vim - Divide By Zero in GitHub repository vim/vim prior to 9.0.1247. Divide By Zero in GitHub repository vim/vim prior to 9.0.1247. Scope: local bookworm: resolved (fixed in 2:9.0.1378-1) bullseye: open forky: resolved (fixed in 2:9.0.1378-1) sid: resolved (fixed in 2:9.0.1378-1) trixie: resolved (fixed in 2:9.0.1378-1)

debian

CVE-2023-0051LOWCVSS 7.8fixed in vim 2:9.0.1378-1 (bookworm)2023

CVE-2023-0051 [HIGH] CVE-2023-0051: vim - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1144. Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1144. Scope: local bookworm: resolved (fixed in 2:9.0.1378-1) bullseye: open forky: resolved (fixed in 2:9.0.1378-1) sid: resolved (fixed in 2:9.0.1378-1) trixie: resolved (fixed in 2:9.0.1378-1)

debian

CVE-2023-4734LOWCVSS 7.8fixed in vim 2:9.0.1894-1 (forky)2023

CVE-2023-4734 [HIGH] CVE-2023-4734: vim - Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0.1846. Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0.1846. Scope: local bookworm: open bullseye: open forky: resolved (fixed in 2:9.0.1894-1) sid: resolved (fixed in 2:9.0.1894-1) trixie: resolved (fixed in 2:9.0.1894-1)

debian

CVE-2023-1264LOWCVSS 5.5fixed in vim 2:9.0.1658-1 (forky)2023

CVE-2023-1264 [MEDIUM] CVE-2023-1264: vim - NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.1392. NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.1392. Scope: local bookworm: open bullseye: open forky: resolved (fixed in 2:9.0.1658-1) sid: resolved (fixed in 2:9.0.1658-1) trixie: resolved (fixed in 2:9.0.1658-1)

debian

CVE-2023-48232LOWCVSS 3.9fixed in vim 2:9.0.2116-1 (forky)2023

CVE-2023-48232 [LOW] CVE-2023-48232: vim - Vim is an open source command line text editor. A floating point exception may o... Vim is an open source command line text editor. A floating point exception may occur when calculating the line offset for overlong lines and smooth scrolling is enabled and the cpo-settings include the 'n' flag. This may happen when a window border is present and when the wrapped line continues on the next physical line directly in the window border because the 'cpo' set

debian

CVE-2023-1355LOWCVSS 5.5fixed in vim 2:9.0.1658-1 (forky)2023

CVE-2023-1355 [MEDIUM] CVE-2023-1355: vim - NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.1402. NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.1402. Scope: local bookworm: open bullseye: open forky: resolved (fixed in 2:9.0.1658-1) sid: resolved (fixed in 2:9.0.1658-1) trixie: resolved (fixed in 2:9.0.1658-1)

debian

CVE-2023-0433LOWCVSS 7.8fixed in vim 2:9.0.1378-1 (bookworm)2023

CVE-2023-0433 [HIGH] CVE-2023-0433: vim - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1225. Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1225. Scope: local bookworm: resolved (fixed in 2:9.0.1378-1) bullseye: open forky: resolved (fixed in 2:9.0.1378-1) sid: resolved (fixed in 2:9.0.1378-1) trixie: resolved (fixed in 2:9.0.1378-1)

debian

CVE-2023-0288LOWCVSS 7.8fixed in vim 2:9.0.1378-1 (bookworm)2023

CVE-2023-0288 [HIGH] CVE-2023-0288: vim - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1189. Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1189. Scope: local bookworm: resolved (fixed in 2:9.0.1378-1) bullseye: open forky: resolved (fixed in 2:9.0.1378-1) sid: resolved (fixed in 2:9.0.1378-1) trixie: resolved (fixed in 2:9.0.1378-1)

debian

CVE-2023-48233LOWCVSS 2.8fixed in vim 2:9.0.2116-1 (forky)2023

CVE-2023-48233 [LOW] CVE-2023-48233: vim - Vim is an open source command line text editor. If the count after the :s comman... Vim is an open source command line text editor. If the count after the :s command is larger than what fits into a (signed) long variable, abort with e_value_too_large. Impact is low, user interaction is required and a crash may not even happen in all situations. This issue has been addressed in commit `ac6378773` which has been included in release version 9.0.2108. Users

debian

CVE-2023-3896LOWCVSS 7.8fixed in vim 2:9.0.1894-1 (forky)2023

CVE-2023-3896 [HIGH] CVE-2023-3896: vim - Divide By Zero in vim/vim from 9.0.1367-1 to 9.0.1367-3 Divide By Zero in vim/vim from 9.0.1367-1 to 9.0.1367-3 Scope: local bookworm: open bullseye: open forky: resolved (fixed in 2:9.0.1894-1) sid: resolved (fixed in 2:9.0.1894-1) trixie: resolved (fixed in 2:9.0.1894-1)

debian

CVE-2023-1170LOWCVSS 6.6fixed in vim 2:9.0.1378-1 (bookworm)2023

CVE-2023-1170 [MEDIUM] CVE-2023-1170: vim - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1376. Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1376. Scope: local bookworm: resolved (fixed in 2:9.0.1378-1) bullseye: open forky: resolved (fixed in 2:9.0.1378-1) sid: resolved (fixed in 2:9.0.1378-1) trixie: resolved (fixed in 2:9.0.1378-1)

debian

CVE-2022-1785HIGHCVSS 7.8fixed in vim 2:9.0.0135-1 (bookworm)2022

CVE-2022-1785 [HIGH] CVE-2022-1785: vim - Out-of-bounds Write in GitHub repository vim/vim prior to 8.2.4977. Out-of-bounds Write in GitHub repository vim/vim prior to 8.2.4977. Scope: local bookworm: resolved (fixed in 2:9.0.0135-1) bullseye: resolved (fixed in 2:8.2.2434-3+deb11u2) forky: resolved (fixed in 2:9.0.0135-1) sid: resolved (fixed in 2:9.0.0135-1) trixie: resolved (fixed in 2:9.0.0135-1)

debian

CVE-2022-2288HIGHCVSS 7.8fixed in vim 2:9.0.0135-1 (bookworm)2022

CVE-2022-2288 [HIGH] CVE-2022-2288: vim - Out-of-bounds Write in GitHub repository vim/vim prior to 9.0. Out-of-bounds Write in GitHub repository vim/vim prior to 9.0. Scope: local bookworm: resolved (fixed in 2:9.0.0135-1) bullseye: resolved forky: resolved (fixed in 2:9.0.0135-1) sid: resolved (fixed in 2:9.0.0135-1) trixie: resolved (fixed in 2:9.0.0135-1)

debian

CVE-2022-0392HIGHCVSS 7.8fixed in vim 2:8.2.4659-1 (bookworm)2022

CVE-2022-0392 [HIGH] CVE-2022-0392: vim - Heap-based Buffer Overflow in GitHub repository vim prior to 8.2. Heap-based Buffer Overflow in GitHub repository vim prior to 8.2. Scope: local bookworm: resolved (fixed in 2:8.2.4659-1) bullseye: resolved (fixed in 2:8.2.2434-3+deb11u2) forky: resolved (fixed in 2:8.2.4659-1) sid: resolved (fixed in 2:8.2.4659-1) trixie: resolved (fixed in 2:8.2.4659-1)

debian

CVE-2022-2129HIGHCVSS 7.8fixed in vim 2:9.0.0135-1 (bookworm)2022

CVE-2022-2129 [HIGH] CVE-2022-2129: vim - Out-of-bounds Write in GitHub repository vim/vim prior to 8.2. Out-of-bounds Write in GitHub repository vim/vim prior to 8.2. Scope: local bookworm: resolved (fixed in 2:9.0.0135-1) bullseye: resolved (fixed in 2:8.2.2434-3+deb11u2) forky: resolved (fixed in 2:9.0.0135-1) sid: resolved (fixed in 2:9.0.0135-1) trixie: resolved (fixed in 2:9.0.0135-1)

debian

CVE-2022-3099HIGHCVSS 7.8fixed in vim 2:9.0.0626-1 (bookworm)2022

CVE-2022-3099 [HIGH] CVE-2022-3099: vim - Use After Free in GitHub repository vim/vim prior to 9.0.0360. Use After Free in GitHub repository vim/vim prior to 9.0.0360. Scope: local bookworm: resolved (fixed in 2:9.0.0626-1) bullseye: resolved (fixed in 2:8.2.2434-3+deb11u2) forky: resolved (fixed in 2:9.0.0626-1) sid: resolved (fixed in 2:9.0.0626-1) trixie: resolved (fixed in 2:9.0.0626-1)

debian

CVE-2022-0128HIGHCVSS 7.8fixed in vim 2:8.2.4659-1 (bookworm)2022

CVE-2022-0128 [HIGH] CVE-2022-0128: vim - vim is vulnerable to Out-of-bounds Read vim is vulnerable to Out-of-bounds Read Scope: local bookworm: resolved (fixed in 2:8.2.4659-1) bullseye: resolved forky: resolved (fixed in 2:8.2.4659-1) sid: resolved (fixed in 2:8.2.4659-1) trixie: resolved (fixed in 2:8.2.4659-1)

debian

CVE-2022-0359HIGHCVSS 7.8fixed in vim 2:8.2.4659-1 (bookworm)2022

CVE-2022-0359 [HIGH] CVE-2022-0359: vim - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. Scope: local bookworm: resolved (fixed in 2:8.2.4659-1) bullseye: resolved (fixed in 2:8.2.2434-3+deb11u2) forky: resolved (fixed in 2:8.2.4659-1) sid: resolved (fixed in 2:8.2.4659-1) trixie: resolved (fixed in 2:8.2.4659-1)

debian

CVE-2022-2304HIGHCVSS 7.8fixed in vim 2:9.0.0135-1 (bookworm)2022

CVE-2022-2304 [HIGH] CVE-2022-2304: vim - Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0. Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0. Scope: local bookworm: resolved (fixed in 2:9.0.0135-1) bullseye: resolved (fixed in 2:8.2.2434-3+deb11u2) forky: resolved (fixed in 2:9.0.0135-1) sid: resolved (fixed in 2:9.0.0135-1) trixie: resolved (fixed in 2:9.0.0135-1)

debian

CVE-2022-1942HIGHCVSS 7.8fixed in vim 2:9.0.0135-1 (bookworm)2022

CVE-2022-1942 [HIGH] CVE-2022-1942: vim - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. Scope: local bookworm: resolved (fixed in 2:9.0.0135-1) bullseye: resolved (fixed in 2:8.2.2434-3+deb11u2) forky: resolved (fixed in 2:9.0.0135-1) sid: resolved (fixed in 2:9.0.0135-1) trixie: resolved (fixed in 2:9.0.0135-1)

debian

← Previous4 / 12Next →