Candidate: CVE-2022-1381
PublicDate: 2022-04-18 01:15:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1381
 https://huntr.dev/bounties/55f9c0e8-c221-48b6-a00e-bdcaebaba4a4/
 https://github.com/vim/vim/commit/f50808ed135ab973296bca515ae4029b321afe47 (v8.2.4763)
 https://huntr.dev/bounties/55f9c0e8-c221-48b6-a00e-bdcaebaba4a4
 https://github.com/vim/vim/commit/f50808ed135ab973296bca515ae4029b321afe47
Description:
 global heap buffer overflow in skip_range in GitHub repository vim/vim
 prior to 8.2.4763. This vulnerability is capable of crashing software,
 Bypass Protection Mechanism, Modify Memory, and possible remote execution
Ubuntu-Description:
Notes:
Mitigation:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H [7.8 HIGH]


Patches_vim:
upstream_vim: needs-triage
trusty/esm_vim: not-affected (code not present)
esm-infra/xenial_vim: not-affected (code not present)
trusty_vim: ignored (out of standard support)
xenial_vim: ignored (out of standard support)
bionic_vim: not-affected (code not present)
focal_vim: not-affected (code not present)
impish_vim: not-affected (code not present)
jammy_vim: needs-triage
devel_vim: needs-triage