CVE-2023-0512 – Divide By Zero in vim/vim
https://notcve.org/view.php?id=CVE-2023-0512
Divide By Zero in GitHub repository vim/vim prior to 9.0.1247. • http://seclists.org/fulldisclosure/2023/Mar/17 http://seclists.org/fulldisclosure/2023/Mar/18 http://seclists.org/fulldisclosure/2023/Mar/21 https://github.com/vim/vim/commit/870219c58c0804bdc55419b2e455c06ac715a835 https://huntr.dev/bounties/de83736a-1936-4872-830b-f1e9b0ad2a74 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IE44W6WMMREYCW3GJHPSYP7NK2VT5NY6 https://support.apple.com/kb/HT213670 https://support.apple.com/kb/HT213675 https://support.apple.com/kb • CWE-369: Divide By Zero •
CVE-2023-0433 – Heap-based Buffer Overflow in vim/vim
https://notcve.org/view.php?id=CVE-2023-0433
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1225. Desbordamiento de búfer de almacenamiento dinámico en el repositorio de GitHub vim/vim anterior a 9.0.1225. • http://seclists.org/fulldisclosure/2023/Mar/17 http://seclists.org/fulldisclosure/2023/Mar/18 http://seclists.org/fulldisclosure/2023/Mar/21 https://github.com/vim/vim/commit/11977f917506d950b7e0cae558bd9189260b253b https://huntr.dev/bounties/ae933869-a1ec-402a-bbea-d51764c6618e https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4EX6N2DB75A73MQGVW3CS4VTNPAYVM2M https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PZWIJBSQX53P7DHV77KRXJIXA4GH7XHC https: • CWE-122: Heap-based Buffer Overflow •
CVE-2022-47024 – vim: no check if the return value of XChangeGC() is NULL
https://notcve.org/view.php?id=CVE-2022-47024
A null pointer dereference issue was discovered in function gui_x11_create_blank_mouse in gui_x11.c in vim 8.1.2269 thru 9.0.0339 allows attackers to cause denial of service or other unspecified impacts. Se descubrió un problema de desreferencia de puntero null en la función gui_x11_create_blank_mouse en gui_x11.c en vim 8.1.2269 hasta 9.0.0339 que permite a los atacantes provocar denegación de servicio u otros impactos no especificados. A NULL pointer dereference issue was found in Vim's gui_x11_create_blank_mouse function in gui_x11.c. This flaw allows attackers to cause a denial of service and other unspecified impacts. • https://github.com/vim/vim/commit/a63ad78ed31e36dbdf3a9cd28071dcdbefce7d19 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4EX6N2DB75A73MQGVW3CS4VTNPAYVM2M https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PZWIJBSQX53P7DHV77KRXJIXA4GH7XHC https://security.gentoo.org/glsa/202305-16 https://access.redhat.com/security/cve/CVE-2022-47024 https://bugzilla.redhat.com/show_bug.cgi?id=2163613 • CWE-476: NULL Pointer Dereference •
CVE-2023-0288 – Heap-based Buffer Overflow in vim/vim
https://notcve.org/view.php?id=CVE-2023-0288
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1189. • http://seclists.org/fulldisclosure/2023/Mar/17 https://github.com/vim/vim/commit/232bdaaca98c34a99ffadf27bf6ee08be6cc8f6a https://huntr.dev/bounties/550a0852-9be0-4abe-906c-f803b34e41d3 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WYC22GGZ6QA66HLNLHCTAJU265TT3O33 https://support.apple.com/kb/HT213670 • CWE-122: Heap-based Buffer Overflow •
CVE-2023-0054 – Out-of-bounds Write in vim/vim
https://notcve.org/view.php?id=CVE-2023-0054
Out-of-bounds Write in GitHub repository vim/vim prior to 9.0.1145. • http://seclists.org/fulldisclosure/2023/Mar/17 https://github.com/vim/vim/commit/3ac1d97a1d9353490493d30088256360435f7731 https://huntr.dev/bounties/b289ee0f-fd16-4147-bd01-c6289c45e49d https://lists.debian.org/debian-lts-announce/2023/06/msg00015.html https://security.gentoo.org/glsa/202305-16 https://support.apple.com/kb/HT213670 • CWE-787: Out-of-bounds Write •