File _patchinfo of Package patchinfo.27247
<patchinfo incident="27247"> <issue tracker="bnc" id="1204779">VUL-0: CVE-2022-3705: vim: use after free in function qf_update_buffer of the file quickfix.c</issue> <issue tracker="bnc" id="1206028">VUL-0: CVE-2022-3491: vim: Heap-based Buffer Overflow prior to 9.0.0742</issue> <issue tracker="bnc" id="1206075">VUL-0: CVE-2022-4292: vim: Use After Free in GitHub repository vim/vim prior to 9.0.0882.</issue> <issue tracker="bnc" id="1205797">VUL-0: CVE-2022-4141: vim: heap-buffer-overflow in alloc.c 246:11</issue> <issue tracker="bnc" id="1206077">VUL-0: CVE-2022-4293: vim: Floating Point Comparison with Incorrect Operator in GitHub repository vim/vim prior to 9.0.0804.</issue> <issue tracker="bnc" id="1206071">VUL-0: CVE-2022-3520: vim: Heap-based Buffer Overflow</issue> <issue tracker="bnc" id="1206072">VUL-0: CVE-2022-3591: vim: Use After Free</issue> <issue tracker="cve" id="2022-3520"/> <issue tracker="cve" id="2022-4293"/> <issue tracker="cve" id="2022-4141"/> <issue tracker="cve" id="2022-3705"/> <issue tracker="cve" id="2022-3591"/> <issue tracker="cve" id="2022-3491"/> <issue tracker="cve" id="2022-4292"/> <packager>bzoltan1</packager> <rating>important</rating> <category>security</category> <summary>Security update for vim</summary> <description>This update for vim fixes the following issues: Updated to version 9.0.1040: - CVE-2022-3491: vim: Heap-based Buffer Overflow prior to 9.0.0742 (bsc#1206028). - CVE-2022-3520: vim: Heap-based Buffer Overflow (bsc#1206071). - CVE-2022-3591: vim: Use After Free (bsc#1206072). - CVE-2022-4292: vim: Use After Free in GitHub repository vim/vim prior to 9.0.0882 (bsc#1206075). - CVE-2022-4293: vim: Floating Point Comparison with Incorrect Operator in GitHub repository vim/vim prior to 9.0.0804 (bsc#1206077). - CVE-2022-4141: vim: heap-buffer-overflow in alloc.c 246:11 (bsc#1205797). - CVE-2022-3705: vim: use after free in function qf_update_buffer of the file quickfix.c (bsc#1204779). </description> </patchinfo>
