Heap-based Buffer Overflow in vim/vim
Description
A heap-buffer-overflow in vim/vim prior to 9.0.1873 allows arbitrary code execution via crafted input.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A heap-buffer-overflow in vim/vim prior to 9.0.1873 allows arbitrary code execution via crafted input.
Vulnerability
A heap-based buffer overflow vulnerability exists in the vim_regsub_both function of Vim prior to version 9.0.1873. This flaw is triggered when processing specially crafted input files, leading to out-of-bounds memory access.
Exploitation
An attacker can exploit this vulnerability by supplying a malicious file to a user who then opens it with an affected version of Vim. No special network access or elevated privileges are required beyond the ability to persuade the target to open the crafted file [2][3].
Impact
Successful exploitation can lead to unexpected application termination or arbitrary code execution, potentially compromising the security of the affected system [1][2]. The impact includes disclosure of sensitive information, modification of data, or full control of the application context.
Mitigation
The vulnerability is fixed in Vim version 9.0.1873, released on August 23, 2023 [2]. Apple has also addressed this issue in macOS Sonoma 14.1 by removing the vulnerable code [1]. Users should update to the latest patched version. No workaround is available for unpatched versions.
AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
28- osv-coords26 versionspkg:rpm/opensuse/vim&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/vim&distro=openSUSE%20Leap%2015.5pkg:rpm/suse/vim&distro=SUSE%20Enterprise%20Storage%207.1pkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSSpkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-ESPOSpkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSSpkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Micro%205.1pkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Micro%205.2pkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Micro%205.3pkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Micro%205.4pkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Micro%205.5pkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP4pkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP5pkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP4pkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP5pkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSSpkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSSpkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSSpkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5pkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1pkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2pkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3pkg:rpm/suse/vim&distro=SUSE%20Manager%20Proxy%204.2pkg:rpm/suse/vim&distro=SUSE%20Manager%20Server%204.2
< 9.0.1894-150000.5.54.1+ 25 more
- (no CPE)range: < 9.0.1894-150000.5.54.1
- (no CPE)range: < 9.0.2103-150500.20.6.1
- (no CPE)range: < 9.0.1894-150000.5.54.1
- (no CPE)range: < 9.0.1894-150000.5.54.1
- (no CPE)range: < 9.0.1894-150000.5.54.1
- (no CPE)range: < 9.0.1894-150000.5.54.1
- (no CPE)range: < 9.0.1894-150000.5.54.1
- (no CPE)range: < 9.0.1894-150000.5.54.1
- (no CPE)range: < 9.0.1894-150000.5.54.1
- (no CPE)range: < 9.0.1894-150000.5.54.1
- (no CPE)range: < 9.0.1894-150000.5.54.1
- (no CPE)range: < 9.0.2103-150500.20.6.1
- (no CPE)range: < 9.0.1894-150000.5.54.1
- (no CPE)range: < 9.0.2103-150500.20.6.1
- (no CPE)range: < 9.0.1894-150000.5.54.1
- (no CPE)range: < 9.0.2103-150500.20.6.1
- (no CPE)range: < 9.0.1894-17.23.2
- (no CPE)range: < 9.0.1894-150000.5.54.1
- (no CPE)range: < 9.0.1894-150000.5.54.1
- (no CPE)range: < 9.0.1894-150000.5.54.1
- (no CPE)range: < 9.0.1894-17.23.2
- (no CPE)range: < 9.0.1894-150000.5.54.1
- (no CPE)range: < 9.0.1894-150000.5.54.1
- (no CPE)range: < 9.0.1894-150000.5.54.1
- (no CPE)range: < 9.0.1894-150000.5.54.1
- (no CPE)range: < 9.0.1894-150000.5.54.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5News mentions
0No linked articles in our index yet.