vim is vulnerable to Use After Free
{
"unresolved_ranges": [
{
"extracted_events": [
{
"fixed": "12.3"
},
{
"introduced": "11.0"
},
{
"fixed": "11.6.6"
}
],
"source": "CPE_RANGE",
"vendor_product": "apple:macos",
"cpes": [
"cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*"
]
},
{
"extracted_events": [
{
"introduced": "10.15.7"
},
{
"last_affected": "10.15.7"
},
{
"introduced": "10.15.7-security_update_2020\\-001"
},
{
"last_affected": "10.15.7-security_update_2020\\-001"
},
{
"introduced": "10.15.7-security_update_2021\\-001"
},
{
"last_affected": "10.15.7-security_update_2021\\-001"
},
{
"introduced": "10.15.7-security_update_2021\\-002"
},
{
"last_affected": "10.15.7-security_update_2021\\-002"
},
{
"introduced": "10.15.7-security_update_2021\\-003"
},
{
"last_affected": "10.15.7-security_update_2021\\-003"
},
{
"introduced": "10.15.7-security_update_2021\\-004"
},
{
"last_affected": "10.15.7-security_update_2021\\-004"
},
{
"introduced": "10.15.7-security_update_2021\\-005"
},
{
"last_affected": "10.15.7-security_update_2021\\-005"
},
{
"introduced": "10.15.7-security_update_2021\\-006"
},
{
"last_affected": "10.15.7-security_update_2021\\-006"
},
{
"introduced": "10.15.7-security_update_2021\\-007"
},
{
"last_affected": "10.15.7-security_update_2021\\-007"
},
{
"introduced": "10.15.7-security_update_2021\\-008"
},
{
"last_affected": "10.15.7-security_update_2021\\-008"
},
{
"introduced": "10.15.7-security_update_2022\\-001"
},
{
"last_affected": "10.15.7-security_update_2022\\-001"
},
{
"introduced": "10.15.7-security_update_2022\\-002"
},
{
"last_affected": "10.15.7-security_update_2022\\-002"
},
{
"introduced": "10.15.7-security_update_2022\\-003"
},
{
"last_affected": "10.15.7-security_update_2022\\-003"
}
],
"source": "CPE_STRING",
"vendor_product": "apple:mac_os_x",
"cpes": [
"cpe:2.3:o:apple:mac_os_x:10.15.7:*:*:*:*:*:*:*",
"cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020-001:*:*:*:*:*:*",
"cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-001:*:*:*:*:*:*",
"cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-002:*:*:*:*:*:*",
"cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-003:*:*:*:*:*:*",
"cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-004:*:*:*:*:*:*",
"cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-005:*:*:*:*:*:*",
"cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-006:*:*:*:*:*:*",
"cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-007:*:*:*:*:*:*",
"cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-008:*:*:*:*:*:*",
"cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2022-001:*:*:*:*:*:*",
"cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2022-002:*:*:*:*:*:*",
"cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2022-003:*:*:*:*:*:*"
]
},
{
"extracted_events": [
{
"introduced": "10.15.7-security_update_2022\\-004"
},
{
"last_affected": "10.15.7-security_update_2022\\-004"
}
],
"source": "CPE_STRING",
"vendor_product": "apple:macos",
"cpes": [
"cpe:2.3:o:apple:macos:10.15.7:security_update_2022-004:*:*:*:*:*:*"
]
},
{
"extracted_events": [
{
"introduced": "34"
},
{
"last_affected": "34"
},
{
"introduced": "35"
},
{
"last_affected": "35"
}
],
"source": "CPE_STRING",
"vendor_product": "fedoraproject:fedora",
"cpes": [
"cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*",
"cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*"
]
}
]
}{
"source": [
"CPE_RANGE",
"REFERENCES"
],
"cpe": "cpe:2.3:a:vim:vim:*:*:*:*:*:*:*:*",
"extracted_events": [
{
"introduced": "0"
},
{
"last_affected": "8.2.3912"
}
]
}"2026-07-09T00:37:24Z"
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-4187.json"
[
{
"id": "CVE-2021-4187-0a5c48d7",
"digest": {
"line_hashes": [
"146200493773228420153804765641940418619",
"197191776356898835433195031324738166261",
"263394992920639829949010106381928263352",
"190807766107753865483989473886773823951"
],
"threshold": 0.9
},
"signature_version": "v1",
"signature_type": "Line",
"source": "https://github.com/vim/vim/commit/4bf1006cae7e87259ccd5219128c3dba75774441",
"deprecated": false,
"target": {
"file": "src/version.c"
}
},
{
"id": "CVE-2021-4187-9d41cc23",
"digest": {
"function_hash": "329695758211352231865688861252338448531",
"length": 3138.0
},
"signature_version": "v1",
"signature_type": "Function",
"source": "https://github.com/vim/vim/commit/4bf1006cae7e87259ccd5219128c3dba75774441",
"deprecated": false,
"target": {
"function": "get_function_args",
"file": "src/userfunc.c"
}
},
{
"id": "CVE-2021-4187-c2af318b",
"digest": {
"line_hashes": [
"70394071054894407816338470873143959551",
"55869490293168429760126230071311166195",
"94325553865538883243378045992763680444",
"238421778940890724809769066628044509150"
],
"threshold": 0.9
},
"signature_version": "v1",
"signature_type": "Line",
"source": "https://github.com/vim/vim/commit/4bf1006cae7e87259ccd5219128c3dba75774441",
"deprecated": false,
"target": {
"file": "src/userfunc.c"
}
}
]