rpm package
suse/vim&distro=SUSE Linux Enterprise High Performance Computing 15-LTSS
pkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSS
Vulnerabilities (99)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-4193 | — | < 8.2.5038-150000.5.21.1 | 8.2.5038-150000.5.21.1 | Dec 31, 2021 | vim is vulnerable to Out-of-bounds Read | ||
| CVE-2021-4192 | — | < 8.2.5038-150000.5.21.1 | 8.2.5038-150000.5.21.1 | Dec 31, 2021 | vim is vulnerable to Use After Free | ||
| CVE-2021-4166 | — | < 8.2.5038-150000.5.21.1 | 8.2.5038-150000.5.21.1 | Dec 25, 2021 | vim is vulnerable to Out-of-bounds Read | ||
| CVE-2021-4136 | — | < 8.2.5038-150000.5.21.1 | 8.2.5038-150000.5.21.1 | Dec 19, 2021 | vim is vulnerable to Heap-based Buffer Overflow | ||
| CVE-2021-4069 | — | < 8.2.5038-150000.5.21.1 | 8.2.5038-150000.5.21.1 | Dec 6, 2021 | vim is vulnerable to Use After Free | ||
| CVE-2021-4019 | Hig | 7.8 | < 8.2.5038-150000.5.21.1 | 8.2.5038-150000.5.21.1 | Dec 1, 2021 | vim is vulnerable to Heap-based Buffer Overflow | |
| CVE-2021-3984 | — | < 8.2.5038-150000.5.21.1 | 8.2.5038-150000.5.21.1 | Dec 1, 2021 | vim is vulnerable to Heap-based Buffer Overflow | ||
| CVE-2021-3968 | — | < 8.2.5038-150000.5.21.1 | 8.2.5038-150000.5.21.1 | Nov 19, 2021 | vim is vulnerable to Heap-based Buffer Overflow | ||
| CVE-2021-3973 | — | < 8.2.5038-150000.5.21.1 | 8.2.5038-150000.5.21.1 | Nov 19, 2021 | vim is vulnerable to Heap-based Buffer Overflow | ||
| CVE-2021-3974 | — | < 8.2.5038-150000.5.21.1 | 8.2.5038-150000.5.21.1 | Nov 19, 2021 | vim is vulnerable to Use After Free | ||
| CVE-2021-3928 | — | < 8.2.5038-150000.5.21.1 | 8.2.5038-150000.5.21.1 | Nov 5, 2021 | vim is vulnerable to Use of Uninitialized Variable | ||
| CVE-2021-3927 | — | < 8.2.5038-150000.5.21.1 | 8.2.5038-150000.5.21.1 | Nov 5, 2021 | vim is vulnerable to Heap-based Buffer Overflow | ||
| CVE-2021-3903 | — | < 8.2.5038-150000.5.21.1 | 8.2.5038-150000.5.21.1 | Oct 27, 2021 | vim is vulnerable to Heap-based Buffer Overflow | ||
| CVE-2021-3872 | — | < 8.2.5038-150000.5.21.1 | 8.2.5038-150000.5.21.1 | Oct 19, 2021 | vim is vulnerable to Heap-based Buffer Overflow | ||
| CVE-2021-3875 | — | < 8.2.5038-150000.5.21.1 | 8.2.5038-150000.5.21.1 | Oct 15, 2021 | vim is vulnerable to Heap-based Buffer Overflow | ||
| CVE-2021-3796 | — | < 8.2.5038-150000.5.21.1 | 8.2.5038-150000.5.21.1 | Sep 15, 2021 | vim is vulnerable to Use After Free | ||
| CVE-2021-3778 | — | < 8.2.5038-150000.5.21.1 | 8.2.5038-150000.5.21.1 | Sep 15, 2021 | vim is vulnerable to Heap-based Buffer Overflow | ||
| CVE-2019-20807 | — | < 8.0.1568-5.6.1 | 8.0.1568-5.6.1 | May 28, 2020 | In Vim before 8.1.0881, users can circumvent the rvim restricted mode and execute arbitrary OS commands via scripting interfaces (e.g., Python, Ruby, or Lua). | ||
| CVE-2017-17087 | Med | 5.5 | < 8.2.5038-150000.5.21.1 | 8.2.5038-150000.5.21.1 | Dec 1, 2017 | fileio.c in Vim prior to 8.0.1263 sets the group ownership of a .swp file to the editor's primary group (which may be different from the group ownership of the original file), which allows local users to obtain sensitive information by leveraging an applicable group membership, a |
- CVE-2021-4193Dec 31, 2021affected < 8.2.5038-150000.5.21.1fixed 8.2.5038-150000.5.21.1
vim is vulnerable to Out-of-bounds Read
- CVE-2021-4192Dec 31, 2021affected < 8.2.5038-150000.5.21.1fixed 8.2.5038-150000.5.21.1
vim is vulnerable to Use After Free
- CVE-2021-4166Dec 25, 2021affected < 8.2.5038-150000.5.21.1fixed 8.2.5038-150000.5.21.1
vim is vulnerable to Out-of-bounds Read
- CVE-2021-4136Dec 19, 2021affected < 8.2.5038-150000.5.21.1fixed 8.2.5038-150000.5.21.1
vim is vulnerable to Heap-based Buffer Overflow
- CVE-2021-4069Dec 6, 2021affected < 8.2.5038-150000.5.21.1fixed 8.2.5038-150000.5.21.1
vim is vulnerable to Use After Free
- affected < 8.2.5038-150000.5.21.1fixed 8.2.5038-150000.5.21.1
vim is vulnerable to Heap-based Buffer Overflow
- CVE-2021-3984Dec 1, 2021affected < 8.2.5038-150000.5.21.1fixed 8.2.5038-150000.5.21.1
vim is vulnerable to Heap-based Buffer Overflow
- CVE-2021-3968Nov 19, 2021affected < 8.2.5038-150000.5.21.1fixed 8.2.5038-150000.5.21.1
vim is vulnerable to Heap-based Buffer Overflow
- CVE-2021-3973Nov 19, 2021affected < 8.2.5038-150000.5.21.1fixed 8.2.5038-150000.5.21.1
vim is vulnerable to Heap-based Buffer Overflow
- CVE-2021-3974Nov 19, 2021affected < 8.2.5038-150000.5.21.1fixed 8.2.5038-150000.5.21.1
vim is vulnerable to Use After Free
- CVE-2021-3928Nov 5, 2021affected < 8.2.5038-150000.5.21.1fixed 8.2.5038-150000.5.21.1
vim is vulnerable to Use of Uninitialized Variable
- CVE-2021-3927Nov 5, 2021affected < 8.2.5038-150000.5.21.1fixed 8.2.5038-150000.5.21.1
vim is vulnerable to Heap-based Buffer Overflow
- CVE-2021-3903Oct 27, 2021affected < 8.2.5038-150000.5.21.1fixed 8.2.5038-150000.5.21.1
vim is vulnerable to Heap-based Buffer Overflow
- CVE-2021-3872Oct 19, 2021affected < 8.2.5038-150000.5.21.1fixed 8.2.5038-150000.5.21.1
vim is vulnerable to Heap-based Buffer Overflow
- CVE-2021-3875Oct 15, 2021affected < 8.2.5038-150000.5.21.1fixed 8.2.5038-150000.5.21.1
vim is vulnerable to Heap-based Buffer Overflow
- CVE-2021-3796Sep 15, 2021affected < 8.2.5038-150000.5.21.1fixed 8.2.5038-150000.5.21.1
vim is vulnerable to Use After Free
- CVE-2021-3778Sep 15, 2021affected < 8.2.5038-150000.5.21.1fixed 8.2.5038-150000.5.21.1
vim is vulnerable to Heap-based Buffer Overflow
- CVE-2019-20807May 28, 2020affected < 8.0.1568-5.6.1fixed 8.0.1568-5.6.1
In Vim before 8.1.0881, users can circumvent the rvim restricted mode and execute arbitrary OS commands via scripting interfaces (e.g., Python, Ruby, or Lua).
- affected < 8.2.5038-150000.5.21.1fixed 8.2.5038-150000.5.21.1
fileio.c in Vim prior to 8.0.1263 sets the group ownership of a .swp file to the editor's primary group (which may be different from the group ownership of the original file), which allows local users to obtain sensitive information by leveraging an applicable group membership, a
Page 5 of 5