ELSA-2022-5319

ELSA-2022-5319 - vim security update

Type:SECURITY
Severity:MODERATE
Release Date:2022-07-01

Description


[2:8.0.1763-19.0.1.2]
- Remove upstream references [Orabug: 31197557]
- Added glibc-gconv-extra to common requires to provide ISO-8859-2 [Orabug: 34114984]

[2:8.0.1763-19.2]
- CVE-2022-1621 vim: heap buffer overflow
- CVE-2022-1629 vim: buffer over-read

[2:8.0.1763-19.1]
- CVE-2022-1154 vim: use after free in utf_ptr2char

[2:8.0.1763-19]
- CVE-2022-0361 vim: Heap-based Buffer Overflow in GitHub repository

[2:8.0.1763-18]
- CVE-2022-0392 vim: heap-based buffer overflow in getexmodeline() in ex_getln.c
- CVE-2022-0413 vim: use after free in src/ex_cmds.c

[2:8.0.1763-18]
- fix test suite after fix for CVE-2022-0318
- CVE-2022-0359 vim: heap-based buffer overflow in init_ccline() in ex_getln.c

[2:8.0.1763-18]
- CVE-2022-0261 vim: Heap-based Buffer Overflow in block_insert() in src/ops.c
- CVE-2022-0318 vim: heap-based buffer overflow in utf_head_off() in mbyte.c

[2:8.0.1763-18]
- CVE-2021-4193 vim: vulnerable to Out-of-bounds Read
- CVE-2021-4192 vim: vulnerable to Use After Free

[2:8.0.1763-18]
- 2028341 - CVE-2021-3984 vim: illegal memory access when C-indenting could lead to Heap Buffer Overflow [rhel-8.6.0]
- 2028430 - CVE-2021-4019 vim: heap-based buffer overflow in find_help_tags() in src/help.c [rhel-8.6.0]

[2:8.0.1763-17]
- 2016201 - CVE-2021-3872 vim: heap-based buffer overflow in win_redr_status() drawscreen.c [rhel-8.6.0]


Related CVEs


CVE-2022-1621
CVE-2022-1629

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 8 (aarch64) vim-8.0.1763-19.0.1.el8_6.2.src.rpm41f1306510b5646fb351829baf4cde3a-
vim-X11-8.0.1763-19.0.1.el8_6.2.aarch64.rpmba2ea20daab7498cd2a98f267ca9c3f6-
vim-common-8.0.1763-19.0.1.el8_6.2.aarch64.rpm874ed0df6b21478b09e8fa4b8321a2b0-
vim-enhanced-8.0.1763-19.0.1.el8_6.2.aarch64.rpm746cb0e2fc0552f2ed20f3fd556071bb-
vim-filesystem-8.0.1763-19.0.1.el8_6.2.noarch.rpm35cb944cfc0c99cd0b25a46b7078e8ac-
vim-minimal-8.0.1763-19.0.1.el8_6.2.aarch64.rpm3d4429dec09a06a8e01e9c14da57b1ad-
Oracle Linux 8 (x86_64) vim-8.0.1763-19.0.1.el8_6.2.src.rpm41f1306510b5646fb351829baf4cde3a-
vim-X11-8.0.1763-19.0.1.el8_6.2.x86_64.rpm67f7a54effe1c226cd3a3724d5a8ee6d-
vim-common-8.0.1763-19.0.1.el8_6.2.x86_64.rpmfcc467e5dd95b6bdd27ba04d2a77f48b-
vim-enhanced-8.0.1763-19.0.1.el8_6.2.x86_64.rpme4dd26f3d4d9d3d37f59376b3c1c9e35-
vim-filesystem-8.0.1763-19.0.1.el8_6.2.noarch.rpm35cb944cfc0c99cd0b25a46b7078e8ac-
vim-minimal-8.0.1763-19.0.1.el8_6.2.x86_64.rpma49481ad50653b035efd1e9d65684fb5-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete