ELSA-2022-5319

ULN >
Oracle Linux Errata repository >
ELSA-2022-5319

ELSA-2022-5319 - vim security update

Type:	SECURITY
Severity:	MODERATE
Release Date:	2022-07-01

Description

[2:8.0.1763-19.0.1.2]
- Remove upstream references [Orabug: 31197557]
- Added glibc-gconv-extra to common requires to provide ISO-8859-2 [Orabug: 34114984]

[2:8.0.1763-19.2]
- CVE-2022-1621 vim: heap buffer overflow
- CVE-2022-1629 vim: buffer over-read

[2:8.0.1763-19.1]
- CVE-2022-1154 vim: use after free in utf_ptr2char

[2:8.0.1763-19]
- CVE-2022-0361 vim: Heap-based Buffer Overflow in GitHub repository

[2:8.0.1763-18]
- CVE-2022-0392 vim: heap-based buffer overflow in getexmodeline() in ex_getln.c
- CVE-2022-0413 vim: use after free in src/ex_cmds.c

[2:8.0.1763-18]
- fix test suite after fix for CVE-2022-0318
- CVE-2022-0359 vim: heap-based buffer overflow in init_ccline() in ex_getln.c

[2:8.0.1763-18]
- CVE-2022-0261 vim: Heap-based Buffer Overflow in block_insert() in src/ops.c
- CVE-2022-0318 vim: heap-based buffer overflow in utf_head_off() in mbyte.c

[2:8.0.1763-18]
- CVE-2021-4193 vim: vulnerable to Out-of-bounds Read
- CVE-2021-4192 vim: vulnerable to Use After Free

[2:8.0.1763-18]
- 2028341 - CVE-2021-3984 vim: illegal memory access when C-indenting could lead to Heap Buffer Overflow [rhel-8.6.0]
- 2028430 - CVE-2021-4019 vim: heap-based buffer overflow in find_help_tags() in src/help.c [rhel-8.6.0]

[2:8.0.1763-17]
- 2016201 - CVE-2021-3872 vim: heap-based buffer overflow in win_redr_status() drawscreen.c [rhel-8.6.0]

Related CVEs

CVE-2022-1621

CVE-2022-1629

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory

Oracle Linux 8 (aarch64)	vim-8.0.1763-19.0.1.el8_6.2.src.rpm	41f1306510b5646fb351829baf4cde3a	-
	vim-X11-8.0.1763-19.0.1.el8_6.2.aarch64.rpm	ba2ea20daab7498cd2a98f267ca9c3f6	-
	vim-common-8.0.1763-19.0.1.el8_6.2.aarch64.rpm	874ed0df6b21478b09e8fa4b8321a2b0	-
	vim-enhanced-8.0.1763-19.0.1.el8_6.2.aarch64.rpm	746cb0e2fc0552f2ed20f3fd556071bb	-
	vim-filesystem-8.0.1763-19.0.1.el8_6.2.noarch.rpm	35cb944cfc0c99cd0b25a46b7078e8ac	-
	vim-minimal-8.0.1763-19.0.1.el8_6.2.aarch64.rpm	3d4429dec09a06a8e01e9c14da57b1ad	-

Oracle Linux 8 (x86_64)	vim-8.0.1763-19.0.1.el8_6.2.src.rpm	41f1306510b5646fb351829baf4cde3a	-
	vim-X11-8.0.1763-19.0.1.el8_6.2.x86_64.rpm	67f7a54effe1c226cd3a3724d5a8ee6d	-
	vim-common-8.0.1763-19.0.1.el8_6.2.x86_64.rpm	fcc467e5dd95b6bdd27ba04d2a77f48b	-
	vim-enhanced-8.0.1763-19.0.1.el8_6.2.x86_64.rpm	e4dd26f3d4d9d3d37f59376b3c1c9e35	-
	vim-filesystem-8.0.1763-19.0.1.el8_6.2.noarch.rpm	35cb944cfc0c99cd0b25a46b7078e8ac	-
	vim-minimal-8.0.1763-19.0.1.el8_6.2.x86_64.rpm	a49481ad50653b035efd1e9d65684fb5	-

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691