Debian Vim vulnerabilities

236 known vulnerabilities affecting debian/vim.

Total CVEs

236

CISA KEV

Public exploits

Exploited in wild

Severity breakdown

CRITICAL7HIGH40MEDIUM22LOW167

Vulnerabilities

Page 5 of 12

CVE-2022-0572HIGHCVSS 7.8fixed in vim 2:8.2.4659-1 (bookworm)2022

CVE-2022-0572 [HIGH] CVE-2022-0572: vim - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. Scope: local bookworm: resolved (fixed in 2:8.2.4659-1) bullseye: resolved (fixed in 2:8.2.2434-3+deb11u2) forky: resolved (fixed in 2:8.2.4659-1) sid: resolved (fixed in 2:8.2.4659-1) trixie: resolved (fixed in 2:8.2.4659-1)

debian

CVE-2022-3324HIGHCVSS 7.8fixed in vim 2:9.0.0626-1 (bookworm)2022

CVE-2022-3324 [HIGH] CVE-2022-3324: vim - Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0598. Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0598. Scope: local bookworm: resolved (fixed in 2:9.0.0626-1) bullseye: resolved (fixed in 2:8.2.2434-3+deb11u2) forky: resolved (fixed in 2:9.0.0626-1) sid: resolved (fixed in 2:9.0.0626-1) trixie: resolved (fixed in 2:9.0.0626-1)

debian

CVE-2022-0261HIGHCVSS 7.8fixed in vim 2:8.2.4659-1 (bookworm)2022

CVE-2022-0261 [HIGH] CVE-2022-0261: vim - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. Scope: local bookworm: resolved (fixed in 2:8.2.4659-1) bullseye: resolved (fixed in 2:8.2.2434-3+deb11u2) forky: resolved (fixed in 2:8.2.4659-1) sid: resolved (fixed in 2:8.2.4659-1) trixie: resolved (fixed in 2:8.2.4659-1)

debian

CVE-2022-3134HIGHCVSS 7.8fixed in vim 2:9.0.0626-1 (bookworm)2022

CVE-2022-3134 [HIGH] CVE-2022-3134: vim - Use After Free in GitHub repository vim/vim prior to 9.0.0389. Use After Free in GitHub repository vim/vim prior to 9.0.0389. Scope: local bookworm: resolved (fixed in 2:9.0.0626-1) bullseye: resolved (fixed in 2:8.2.2434-3+deb11u2) forky: resolved (fixed in 2:9.0.0626-1) sid: resolved (fixed in 2:9.0.0626-1) trixie: resolved (fixed in 2:9.0.0626-1)

debian

CVE-2022-1381HIGHCVSS 7.8fixed in vim 2:8.2.4793-1 (bookworm)2022

CVE-2022-1381 [HIGH] CVE-2022-1381: vim - global heap buffer overflow in skip_range in GitHub repository vim/vim prior to ... global heap buffer overflow in skip_range in GitHub repository vim/vim prior to 8.2.4763. This vulnerability is capable of crashing software, Bypass Protection Mechanism, Modify Memory, and possible remote execution Scope: local bookworm: resolved (fixed in 2:8.2.4793-1) bullseye: resolved forky: resolved (fixed in 2:8.2.4793-1) sid: resolved (fixed in 2:8.2.4793-1) trixi

debian

CVE-2022-1616HIGHCVSS 7.8fixed in vim 2:9.0.0135-1 (bookworm)2022

CVE-2022-1616 [HIGH] CVE-2022-1616: vim - Use after free in append_command in GitHub repository vim/vim prior to 8.2.4895.... Use after free in append_command in GitHub repository vim/vim prior to 8.2.4895. This vulnerability is capable of crashing software, Bypass Protection Mechanism, Modify Memory, and possible remote execution Scope: local bookworm: resolved (fixed in 2:9.0.0135-1) bullseye: resolved (fixed in 2:8.2.2434-3+deb11u2) forky: resolved (fixed in 2:9.0.0135-1) sid: resolved (fixed

debian

CVE-2022-0417HIGHCVSS 7.8fixed in vim 2:8.2.4659-1 (bookworm)2022

CVE-2022-0417 [HIGH] CVE-2022-0417: vim - Heap-based Buffer Overflow GitHub repository vim/vim prior to 8.2. Heap-based Buffer Overflow GitHub repository vim/vim prior to 8.2. Scope: local bookworm: resolved (fixed in 2:8.2.4659-1) bullseye: resolved (fixed in 2:8.2.2434-3+deb11u2) forky: resolved (fixed in 2:8.2.4659-1) sid: resolved (fixed in 2:8.2.4659-1) trixie: resolved (fixed in 2:8.2.4659-1)

debian

CVE-2022-0351HIGHCVSS 7.8fixed in vim 2:8.2.4659-1 (bookworm)2022

CVE-2022-0351 [HIGH] CVE-2022-0351: vim - Access of Memory Location Before Start of Buffer in GitHub repository vim/vim pr... Access of Memory Location Before Start of Buffer in GitHub repository vim/vim prior to 8.2. Scope: local bookworm: resolved (fixed in 2:8.2.4659-1) bullseye: resolved (fixed in 2:8.2.2434-3+deb11u2) forky: resolved (fixed in 2:8.2.4659-1) sid: resolved (fixed in 2:8.2.4659-1) trixie: resolved (fixed in 2:8.2.4659-1)

debian

CVE-2022-2000HIGHCVSS 7.8fixed in vim 2:9.0.0135-1 (bookworm)2022

CVE-2022-2000 [HIGH] CVE-2022-2000: vim - Out-of-bounds Write in GitHub repository vim/vim prior to 8.2. Out-of-bounds Write in GitHub repository vim/vim prior to 8.2. Scope: local bookworm: resolved (fixed in 2:9.0.0135-1) bullseye: resolved (fixed in 2:8.2.2434-3+deb11u2) forky: resolved (fixed in 2:9.0.0135-1) sid: resolved (fixed in 2:9.0.0135-1) trixie: resolved (fixed in 2:9.0.0135-1)

debian

CVE-2022-1897HIGHCVSS 7.8fixed in vim 2:9.0.0135-1 (bookworm)2022

CVE-2022-1897 [HIGH] CVE-2022-1897: vim - Out-of-bounds Write in GitHub repository vim/vim prior to 8.2. Out-of-bounds Write in GitHub repository vim/vim prior to 8.2. Scope: local bookworm: resolved (fixed in 2:9.0.0135-1) bullseye: resolved (fixed in 2:8.2.2434-3+deb11u2) forky: resolved (fixed in 2:9.0.0135-1) sid: resolved (fixed in 2:9.0.0135-1) trixie: resolved (fixed in 2:9.0.0135-1)

debian

CVE-2022-0361HIGHCVSS 7.8fixed in vim 2:8.2.4659-1 (bookworm)2022

CVE-2022-0361 [HIGH] CVE-2022-0361: vim - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. Scope: local bookworm: resolved (fixed in 2:8.2.4659-1) bullseye: resolved (fixed in 2:8.2.2434-3+deb11u2) forky: resolved (fixed in 2:8.2.4659-1) sid: resolved (fixed in 2:8.2.4659-1) trixie: resolved (fixed in 2:8.2.4659-1)

debian

CVE-2022-4141HIGHCVSS 7.8fixed in vim 2:9.0.1000-1 (bookworm)2022

CVE-2022-4141 [HIGH] CVE-2022-4141: vim - Heap based buffer overflow in vim/vim 9.0.0946 and below by allowing an attacker... Heap based buffer overflow in vim/vim 9.0.0946 and below by allowing an attacker to CTRL-W gf in the expression used in the RHS of the substitute command. Scope: local bookworm: resolved (fixed in 2:9.0.1000-1) bullseye: resolved (fixed in 2:8.2.2434-3+deb11u2) forky: resolved (fixed in 2:9.0.1000-1) sid: resolved (fixed in 2:9.0.1000-1) trixie: resolved (fixed in 2:9.0.1

debian

CVE-2022-0714LOWCVSS 5.5fixed in vim 2:8.2.4659-1 (bookworm)2022

CVE-2022-0714 [MEDIUM] CVE-2022-0714: vim - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.4436. Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.4436. Scope: local bookworm: resolved (fixed in 2:8.2.4659-1) bullseye: open forky: resolved (fixed in 2:8.2.4659-1) sid: resolved (fixed in 2:8.2.4659-1) trixie: resolved (fixed in 2:8.2.4659-1)

debian

CVE-2022-2125LOWCVSS 7.8fixed in vim 2:9.0.0135-1 (bookworm)2022

CVE-2022-2125 [HIGH] CVE-2022-2125: vim - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. Scope: local bookworm: resolved (fixed in 2:9.0.0135-1) bullseye: open forky: resolved (fixed in 2:9.0.0135-1) sid: resolved (fixed in 2:9.0.0135-1) trixie: resolved (fixed in 2:9.0.0135-1)

debian

CVE-2022-0685LOWCVSS 7.8fixed in vim 2:8.2.4659-1 (bookworm)2022

CVE-2022-0685 [HIGH] CVE-2022-0685: vim - Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 8.2.441... Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 8.2.4418. Scope: local bookworm: resolved (fixed in 2:8.2.4659-1) bullseye: open forky: resolved (fixed in 2:8.2.4659-1) sid: resolved (fixed in 2:8.2.4659-1) trixie: resolved (fixed in 2:8.2.4659-1)

debian

CVE-2022-47024LOWCVSS 7.8fixed in vim 2:9.0.0626-1 (bookworm)2022

CVE-2022-47024 [HIGH] CVE-2022-47024: vim - A null pointer dereference issue was discovered in function gui_x11_create_blank... A null pointer dereference issue was discovered in function gui_x11_create_blank_mouse in gui_x11.c in vim 8.1.2269 thru 9.0.0339 allows attackers to cause denial of service or other unspecified impacts. Scope: local bookworm: resolved (fixed in 2:9.0.0626-1) bullseye: open forky: resolved (fixed in 2:9.0.0626-1) sid: resolved (fixed in 2:9.0.0626-1) trixie: resolved (f

debian

CVE-2022-2257LOWCVSS 7.8fixed in vim 2:9.0.0135-1 (bookworm)2022

CVE-2022-2257 [HIGH] CVE-2022-2257: vim - Out-of-bounds Read in GitHub repository vim/vim prior to 9.0. Out-of-bounds Read in GitHub repository vim/vim prior to 9.0. Scope: local bookworm: resolved (fixed in 2:9.0.0135-1) bullseye: open forky: resolved (fixed in 2:9.0.0135-1) sid: resolved (fixed in 2:9.0.0135-1) trixie: resolved (fixed in 2:9.0.0135-1)

debian

CVE-2022-1796LOWCVSS 7.8fixed in vim 2:9.0.0135-1 (bookworm)2022

CVE-2022-1796 [HIGH] CVE-2022-1796: vim - Use After Free in GitHub repository vim/vim prior to 8.2.4979. Use After Free in GitHub repository vim/vim prior to 8.2.4979. Scope: local bookworm: resolved (fixed in 2:9.0.0135-1) bullseye: open forky: resolved (fixed in 2:9.0.0135-1) sid: resolved (fixed in 2:9.0.0135-1) trixie: resolved (fixed in 2:9.0.0135-1)

debian

CVE-2022-2286LOWCVSS 7.8fixed in vim 2:9.0.0135-1 (bookworm)2022

CVE-2022-2286 [HIGH] CVE-2022-2286: vim - Out-of-bounds Read in GitHub repository vim/vim prior to 9.0. Out-of-bounds Read in GitHub repository vim/vim prior to 9.0. Scope: local bookworm: resolved (fixed in 2:9.0.0135-1) bullseye: open forky: resolved (fixed in 2:9.0.0135-1) sid: resolved (fixed in 2:9.0.0135-1) trixie: resolved (fixed in 2:9.0.0135-1)

debian

CVE-2022-1720LOWCVSS 7.8fixed in vim 2:9.0.0135-1 (bookworm)2022

CVE-2022-1720 [HIGH] CVE-2022-1720: vim - Buffer Over-read in function grab_file_name in GitHub repository vim/vim prior t... Buffer Over-read in function grab_file_name in GitHub repository vim/vim prior to 8.2.4956. This vulnerability is capable of crashing the software, memory modification, and possible remote execution. Scope: local bookworm: resolved (fixed in 2:9.0.0135-1) bullseye: open forky: resolved (fixed in 2:9.0.0135-1) sid: resolved (fixed in 2:9.0.0135-1) trixie: resolved (fixed i

debian

← Previous5 / 12Next →