File _patchinfo of Package patchinfo.27247

Overview Repositories Revisions Requests Users Attributes Meta

File _patchinfo of Package patchinfo.27247

<patchinfo incident="27247">
  <issue tracker="bnc" id="1204779">VUL-0: CVE-2022-3705: vim: use after free in function qf_update_buffer of the file quickfix.c</issue>
  <issue tracker="bnc" id="1206028">VUL-0: CVE-2022-3491: vim: Heap-based Buffer Overflow prior to 9.0.0742</issue>
  <issue tracker="bnc" id="1206075">VUL-0: CVE-2022-4292: vim: Use After Free in GitHub repository vim/vim prior to 9.0.0882.</issue>
  <issue tracker="bnc" id="1205797">VUL-0: CVE-2022-4141: vim: heap-buffer-overflow in alloc.c 246:11</issue>
  <issue tracker="bnc" id="1206077">VUL-0: CVE-2022-4293: vim: Floating Point Comparison with Incorrect Operator in GitHub repository vim/vim prior to 9.0.0804.</issue>
  <issue tracker="bnc" id="1206071">VUL-0: CVE-2022-3520: vim: Heap-based Buffer Overflow</issue>
  <issue tracker="bnc" id="1206072">VUL-0: CVE-2022-3591: vim: Use After Free</issue>
  <issue tracker="cve" id="2022-3520"/>
  <issue tracker="cve" id="2022-4293"/>
  <issue tracker="cve" id="2022-4141"/>
  <issue tracker="cve" id="2022-3705"/>
  <issue tracker="cve" id="2022-3591"/>
  <issue tracker="cve" id="2022-3491"/>
  <issue tracker="cve" id="2022-4292"/>
  <packager>bzoltan1</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for vim</summary>
  <description>This update for vim fixes the following issues:

Updated to version 9.0.1040:

- CVE-2022-3491: vim: Heap-based Buffer Overflow prior to 9.0.0742 (bsc#1206028).
- CVE-2022-3520: vim: Heap-based Buffer Overflow (bsc#1206071).
- CVE-2022-3591: vim: Use After Free (bsc#1206072).
- CVE-2022-4292: vim: Use After Free in GitHub repository vim/vim prior to 9.0.0882 (bsc#1206075).
- CVE-2022-4293: vim: Floating Point Comparison with Incorrect Operator in GitHub repository vim/vim prior to 9.0.0804 (bsc#1206077).
- CVE-2022-4141: vim: heap-buffer-overflow in alloc.c 246:11 (bsc#1205797).
- CVE-2022-3705: vim: use after free in function qf_update_buffer of the file quickfix.c (bsc#1204779).
</description>
</patchinfo>

Places

File _patchinfo of Package patchinfo.27247

Places