Divide By Zero in vim/vim
Description
A divide-by-zero vulnerability in Vim versions prior to 9.0.1247 can cause a crash or denial of service.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A divide-by-zero vulnerability in Vim versions prior to 9.0.1247 can cause a crash or denial of service.
Vulnerability
A divide-by-zero issue exists in Vim (vim/vim) prior to version 9.0.1247. The exact code path that triggers the error is not specified in the available references, but divide-by-zero bugs typically occur when an arithmetic operation divides by a user-controlled value that is zero.
Exploitation
An attacker could exploit this vulnerability by providing a specially crafted file or input that causes Vim to perform a division by zero. No authentication is required, but the victim must open the malicious file with Vim. The attack can be performed remotely if Vim is used to view untrusted files.
Impact
Successful exploitation leads to a crash of the Vim process (denial of service). The impact is limited to availability; there is no indication of information disclosure or remote code execution from the available description.
Mitigation
The vulnerability is fixed in Vim version 9.0.1247, released on or before 2023-01-26. Users should update to this version or later. No workaround is disclosed in the provided references. The issue is not known to be exploited in the wild as of publication.
AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
33- osv-coords31 versionspkg:rpm/opensuse/vim&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/vim&distro=openSUSE%20Leap%20Micro%205.3pkg:rpm/suse/vim&distro=SUSE%20Enterprise%20Storage%207pkg:rpm/suse/vim&distro=SUSE%20Enterprise%20Storage%207.1pkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSSpkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-ESPOSpkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSSpkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Micro%205.1pkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Micro%205.2pkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Micro%205.3pkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Micro%205.4pkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP4pkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP4pkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP3pkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCLpkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4-ESPOSpkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4-LTSSpkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSSpkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSSpkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSSpkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4pkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5pkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1pkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2pkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3pkg:rpm/suse/vim&distro=SUSE%20Manager%20Proxy%204.2pkg:rpm/suse/vim&distro=SUSE%20Manager%20Server%204.2pkg:rpm/suse/vim&distro=SUSE%20OpenStack%20Cloud%209pkg:rpm/suse/vim&distro=SUSE%20OpenStack%20Cloud%20Crowbar%209
< 9.0.1386-150000.5.37.1+ 30 more
- (no CPE)range: < 9.0.1386-150000.5.37.1
- (no CPE)range: < 9.0.1386-150000.5.37.1
- (no CPE)range: < 9.0.1386-150000.5.37.1
- (no CPE)range: < 9.0.1386-150000.5.37.1
- (no CPE)range: < 9.0.1386-150000.5.37.1
- (no CPE)range: < 9.0.1386-150000.5.37.1
- (no CPE)range: < 9.0.1386-150000.5.37.1
- (no CPE)range: < 9.0.1386-150000.5.37.1
- (no CPE)range: < 9.0.1386-150000.5.37.1
- (no CPE)range: < 9.0.1386-150000.5.37.1
- (no CPE)range: < 9.0.1386-150000.5.37.1
- (no CPE)range: < 9.0.1386-150000.5.37.1
- (no CPE)range: < 9.0.1386-150000.5.37.1
- (no CPE)range: < 9.0.1386-150000.5.37.1
- (no CPE)range: < 9.0.1386-150000.5.37.1
- (no CPE)range: < 9.0.1386-17.15.4
- (no CPE)range: < 9.0.1386-17.15.4
- (no CPE)range: < 9.0.1386-17.15.4
- (no CPE)range: < 9.0.1386-17.15.4
- (no CPE)range: < 9.0.1386-150000.5.37.1
- (no CPE)range: < 9.0.1386-150000.5.37.1
- (no CPE)range: < 9.0.1386-150000.5.37.1
- (no CPE)range: < 9.0.1386-17.15.4
- (no CPE)range: < 9.0.1386-17.15.4
- (no CPE)range: < 9.0.1386-150000.5.37.1
- (no CPE)range: < 9.0.1386-150000.5.37.1
- (no CPE)range: < 9.0.1386-150000.5.37.1
- (no CPE)range: < 9.0.1386-150000.5.37.1
- (no CPE)range: < 9.0.1386-150000.5.37.1
- (no CPE)range: < 9.0.1386-17.15.4
- (no CPE)range: < 9.0.1386-17.15.4
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
9- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IE44W6WMMREYCW3GJHPSYP7NK2VT5NY6/mitrevendor-advisory
- seclists.org/fulldisclosure/2023/Mar/17mitremailing-list
- seclists.org/fulldisclosure/2023/Mar/18mitremailing-list
- seclists.org/fulldisclosure/2023/Mar/21mitremailing-list
- github.com/vim/vim/commit/870219c58c0804bdc55419b2e455c06ac715a835mitre
- huntr.dev/bounties/de83736a-1936-4872-830b-f1e9b0ad2a74mitre
- support.apple.com/kb/HT213670mitre
- support.apple.com/kb/HT213675mitre
- support.apple.com/kb/HT213677mitre
News mentions
0No linked articles in our index yet.