Vulnerability CVE-2022-2982: Information

Description

Use After Free in GitHub repository vim/vim prior to 9.0.0260.

Severity: HIGH (7.8) Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

URL: https://nvd.nist.gov/vuln/detail/CVE-2022-2982

Published: Aug. 25, 2022

Modified: Nov. 7, 2023

Error type identifier: CWE-416

Fixed packages

Package name	Branch	Fixed in version	Version from repository	Errata ID	Task #	State
vim	sisyphus	9.0.0463-alt1	9.1.0050-alt3	ALT-PU-2022-2616-1	306795	Fixed
vim	sisyphus_e2k	9.0.0463-alt1	9.1.0050-alt3	ALT-PU-2022-6196-1	-	Fixed
vim	sisyphus_riscv64	9.0.0463-alt1	9.1.0050-alt3	ALT-PU-2022-6204-1	-	Fixed
vim	p10	9.0.0463-alt1	9.1.0050-alt3	ALT-PU-2022-2714-1	307395	Fixed
vim	p10_e2k	9.0.0463-alt1	9.1.0050-alt3	ALT-PU-2022-6380-1	-	Fixed
vim	p9	9.0.0827-alt1	9.0.0827-alt1	ALT-PU-2022-3192-1	309683	Fixed
vim	p9_e2k	9.0.0827-alt1	9.0.0827-alt1	ALT-PU-2022-7361-1	-	Fixed
vim	c10f1	9.0.0463-alt1	9.1.0050-alt2	ALT-PU-2022-2714-1	307395	Fixed
vim	c9f2	9.0.0463-alt1	9.1.0050-alt2	ALT-PU-2022-2704-1	307444	Fixed

References to Advisories, Solutions, and Tools

Hyperlink	Resource
https://github.com/vim/vim/commit/d6c67629ed05aae436164eec474832daf8ba7420	Patch Third Party Advisory
https://huntr.dev/bounties/53f53d9a-ba8a-4985-b7ba-23efbe6833be	Exploit Issue Tracking Patch Third Party Advisory
GLSA-202305-16
FEDORA-2022-b9edf60581

Affected configurations:
1. Configuration 1
  cpe:2.3:a:vim:vim:*:*:*:*:*:*:*:*
  End excliding
  9.0.0260
  
  Configuration 2
  cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*

VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla

Version: v24.5.0