CVE-2018-20786

Priority
Description
libvterm through 0+bzr726, as used in Vim and other products, mishandles
certain out-of-memory conditions, leading to a denial of service
(application crash), related to screen.c, state.c, and vterm.c.
Assigned-to
leosilva
Notes
Package
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.04 LTS (Xenial Xerus):DNE
Ubuntu 18.04 LTS (Bionic Beaver):needed
Ubuntu 19.10 (Eoan Ermine):needed
Ubuntu 20.04 (Focal Fossa):needed
Package
Source: vim (LP Ubuntu Debian)
Upstream:released (2:8.1.0693-1)
Ubuntu 12.04 ESM (Precise Pangolin):not-affected
Ubuntu 14.04 ESM (Trusty Tahr):not-affected
Ubuntu 16.04 LTS (Xenial Xerus):not-affected (code not present)
Ubuntu 18.04 LTS (Bionic Beaver):released (2:8.0.1453-1ubuntu1.3)
Ubuntu 19.10 (Eoan Ermine):not-affected (2:8.1.0875-4ubuntu1)
Ubuntu 20.04 (Focal Fossa):not-affected (2:8.1.0875-4ubuntu1)
Patches:
Upstream:https://github.com/vim/vim/commit/cd929f7ba8cc5b6d6dcf35c8b34124e969fed6b8
More Information

Updated: 2020-04-24 03:49:45 UTC (commit d3f8a6ed481830fb100109a132bef581fc4176fe)