Overview

File _patchinfo of Package patchinfo.31598

<patchinfo incident="31598">
  <issue tracker="bnc" id="1215940">VUL-0: CVE-2023-5344: vim: Heap-based Buffer Overflow in vim prior to 9.0.1969.</issue>
  <issue tracker="bnc" id="1216696">VUL-0: CVE-2023-46246: vim: Integer Overflow in :history command</issue>
  <issue tracker="bnc" id="1214924">VUL-0: CVE-2023-4735: vim: OOB Write ops.c</issue>
  <issue tracker="bnc" id="1216167">VUL-0: CVE-2023-5535: vim: use-after-free from buf_contents_changed()</issue>
  <issue tracker="bnc" id="1214925">VUL-0: CVE-2023-4734: vim: segmentation fault in function f_fullcommand</issue>
  <issue tracker="bnc" id="1214922">VUL-0: CVE-2023-4738: vim: heap-buffer-overflow in vim_regsub_both</issue>
  <issue tracker="bnc" id="1215033">VUL-0: CVE-2023-4781: vim: heap-buffer-overflow in function vim_regsub_both</issue>
  <issue tracker="bnc" id="1215006">VUL-0: CVE-2023-4752: vim: Heap Use After Free in function ins_compl_get_exp</issue>
  <issue tracker="bnc" id="1216001">VUL-0: CVE-2023-5441: vim: segfault in exmode when redrawing</issue>
  <issue tracker="bnc" id="1215004">VUL-0: CVE-2023-4733: vim: use-after-free in function buflist_altfpos</issue>
  <issue tracker="cve" id="2023-5344"/>
  <issue tracker="cve" id="2023-4733"/>
  <issue tracker="cve" id="2023-4752"/>
  <issue tracker="cve" id="2023-46246"/>
  <issue tracker="cve" id="2023-4781"/>
  <issue tracker="cve" id="2023-4735"/>
  <issue tracker="cve" id="2023-5535"/>
  <issue tracker="cve" id="2023-5441"/>
  <issue tracker="cve" id="2023-4738"/>
  <issue tracker="cve" id="2023-4734"/>
  <packager>bzoltan1</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for vim</summary>
  <description>This update for vim fixes the following issues:

Updated to version 9.0 with patch level 2103, fixes the following security problems

* CVE-2023-5344: vim: Heap-based Buffer Overflow in vim prior to 9.0.1969 (bsc#1215940)
* CVE-2023-5441: vim: segfault in exmode when redrawing (bsc#1216001)
* CVE-2023-5535: vim: use-after-free from buf_contents_changed() (bsc#1216167)
* CVE-2023-46246: vim: Integer Overflow in :history command (bsc#1216696)
* CVE-2023-4738: vim: heap-buffer-overflow in vim_regsub_both (bsc#1214922)
* CVE-2023-4735: vim: OOB Write ops.c (bsc#1214924)
* CVE-2023-4734: vim: segmentation fault in function f_fullcommand (bsc#1214925)
* CVE-2023-4733: vim: use-after-free in function buflist_altfpos (bsc#1215004)
* CVE-2023-4752: vim: Heap Use After Free in function ins_compl_get_exp (bsc#1215006)
* CVE-2023-4781: vim: heap-buffer-overflow in function vim_regsub_both (bsc#1215033)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places