Vulnerability CVE-2022-0714: Information

Description

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.4436.

Severity: MEDIUM (5.5) Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

URL: https://nvd.nist.gov/vuln/detail/CVE-2022-0714

Published: Feb. 22, 2022

Modified: Nov. 7, 2023

Error type identifier: CWE-122

Fixed packages

Package name	Branch	Fixed in version	Version from repository	Errata ID	Task #	State
vim	sisyphus	8.2.4747-alt1	9.1.0050-alt3	ALT-PU-2022-1693-1	298397	Fixed
vim	sisyphus_e2k	8.2.4784-alt1	9.1.0050-alt3	ALT-PU-2022-4810-1	-	Fixed
vim	sisyphus_riscv64	8.2.4747-alt1	9.1.0050-alt3	ALT-PU-2022-4604-1	-	Fixed
vim	p10	8.2.4784-alt1	9.1.0050-alt3	ALT-PU-2022-1731-1	298398	Fixed
vim	p10_e2k	8.2.4784-alt1	9.1.0050-alt3	ALT-PU-2022-4676-1	-	Fixed
vim	p9	8.2.4784-alt1	9.0.0827-alt1	ALT-PU-2022-1771-1	298486	Fixed
vim	p9_e2k	8.2.5019-alt1	9.0.0827-alt1	ALT-PU-2022-5186-1	-	Fixed
vim	c10f1	8.2.4784-alt1	9.1.0050-alt2	ALT-PU-2022-1731-1	298398	Fixed
vim	c9f2	8.2.4747-alt1	9.1.0050-alt2	ALT-PU-2022-1711-1	298484	Fixed
vim	p11	8.2.4747-alt1	9.1.0050-alt3	ALT-PU-2022-1693-1	298397	Fixed

Hyperlink	Resource
https://github.com/vim/vim/commit/4e889f98e95ac05d7c8bd3ee933ab4d47820fdfa	Patch Third Party Advisory
https://huntr.dev/bounties/db70e8db-f309-4f3c-986c-e69d2415c3b3	Exploit Third Party Advisory
[debian-lts-announce] 20220311 [SECURITY] [DLA 2947-1] vim security update	Mailing List Third Party Advisory
GLSA-202208-32	Third Party Advisory
https://support.apple.com/kb/HT213488	Release Notes Third Party Advisory
20221030 APPLE-SA-2022-10-27-5 Additional information for APPLE-SA-2022-10-24-2 macOS Ventura 13	Mailing List Release Notes Third Party Advisory
20221030 APPLE-SA-2022-10-24-2 macOS Ventura 13	Mailing List Third Party Advisory
[debian-lts-announce] 20221108 [SECURITY] [DLA 3182-1] vim security update	Third Party Advisory
FEDORA-2022-48bf3cb1c4
FEDORA-2022-63ca9a1129

Version: v24.5.3