It was discovered that vim incorrectly handled parsing of filenames in its search functionality. If a user was tricked into opening a specially crafted file, an attacker could crash the application, leading to a denial of service. This issue only affected Ubuntu 21.10. (CVE-2021-3973)
It was discovered that vim incorrectly handled memory when opening and searching the contents of certain files. If a user was tricked into opening a specially crafted file, an attacker could crash the application, leading to a denial of service, or possibly achieve code execution with user privileges. This issue only affected Ubuntu 20.04 LTS and Ubuntu 21.10. (CVE-2021-3974)
It was discovered that vim incorrectly handled memory when opening and editing certain files. If a user was tricked into opening a specially crafted file, an attacker could crash the application, leading to a denial of service, or possibly achieve code execution with user privileges. (CVE-2021-3984)
It was discovered that vim incorrectly handled memory when opening and editing certain files. If a user was tricked into opening a specially crafted file, an attacker could crash the application, leading to a denial of service, or possibly achieve code execution with user privileges. (CVE-2021-4019)
It was discovered that vim incorrectly handled memory when opening and editing certain files. If a user was tricked into opening a specially crafted file, an attacker could crash the application, leading to a denial of service, or possibly achieve code execution with user privileges.(CVE-2021-4069)
{ "binaries": [ { "binary_version": "2:8.0.1453-1ubuntu1.8", "binary_name": "vim" }, { "binary_version": "2:8.0.1453-1ubuntu1.8", "binary_name": "vim-athena" }, { "binary_version": "2:8.0.1453-1ubuntu1.8", "binary_name": "vim-common" }, { "binary_version": "2:8.0.1453-1ubuntu1.8", "binary_name": "vim-gnome" }, { "binary_version": "2:8.0.1453-1ubuntu1.8", "binary_name": "vim-gtk" }, { "binary_version": "2:8.0.1453-1ubuntu1.8", "binary_name": "vim-gtk3" }, { "binary_version": "2:8.0.1453-1ubuntu1.8", "binary_name": "vim-gui-common" }, { "binary_version": "2:8.0.1453-1ubuntu1.8", "binary_name": "vim-nox" }, { "binary_version": "2:8.0.1453-1ubuntu1.8", "binary_name": "vim-runtime" }, { "binary_version": "2:8.0.1453-1ubuntu1.8", "binary_name": "vim-tiny" }, { "binary_version": "2:8.0.1453-1ubuntu1.8", "binary_name": "xxd" } ], "availability": "No subscription required" }
{ "cves_map": { "cves": [ { "severity": [ { "score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "type": "CVSS_V3" }, { "score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:H", "type": "CVSS_V3" }, { "score": "low", "type": "Ubuntu" } ], "id": "CVE-2021-3973" }, { "severity": [ { "score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "type": "CVSS_V3" }, { "score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:H", "type": "CVSS_V3" }, { "score": "low", "type": "Ubuntu" } ], "id": "CVE-2021-3974" }, { "severity": [ { "score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "type": "CVSS_V3" }, { "score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:H", "type": "CVSS_V3" }, { "score": "medium", "type": "Ubuntu" } ], "id": "CVE-2021-3984" }, { "severity": [ { "score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "type": "CVSS_V3" }, { "score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H", "type": "CVSS_V3" }, { "score": "medium", "type": "Ubuntu" } ], "id": "CVE-2021-4019" }, { "severity": [ { "score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "type": "CVSS_V3" }, { "score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H", "type": "CVSS_V3" }, { "score": "medium", "type": "Ubuntu" } ], "id": "CVE-2021-4069" } ], "ecosystem": "Ubuntu:18.04:LTS" } }
{ "binaries": [ { "binary_version": "2:8.1.2269-1ubuntu5.6", "binary_name": "vim" }, { "binary_version": "2:8.1.2269-1ubuntu5.6", "binary_name": "vim-athena" }, { "binary_version": "2:8.1.2269-1ubuntu5.6", "binary_name": "vim-common" }, { "binary_version": "2:8.1.2269-1ubuntu5.6", "binary_name": "vim-gtk" }, { "binary_version": "2:8.1.2269-1ubuntu5.6", "binary_name": "vim-gtk3" }, { "binary_version": "2:8.1.2269-1ubuntu5.6", "binary_name": "vim-gui-common" }, { "binary_version": "2:8.1.2269-1ubuntu5.6", "binary_name": "vim-nox" }, { "binary_version": "2:8.1.2269-1ubuntu5.6", "binary_name": "vim-runtime" }, { "binary_version": "2:8.1.2269-1ubuntu5.6", "binary_name": "vim-tiny" }, { "binary_version": "2:8.1.2269-1ubuntu5.6", "binary_name": "xxd" } ], "availability": "No subscription required" }
{ "cves_map": { "cves": [ { "severity": [ { "score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "type": "CVSS_V3" }, { "score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:H", "type": "CVSS_V3" }, { "score": "low", "type": "Ubuntu" } ], "id": "CVE-2021-3973" }, { "severity": [ { "score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "type": "CVSS_V3" }, { "score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:H", "type": "CVSS_V3" }, { "score": "low", "type": "Ubuntu" } ], "id": "CVE-2021-3974" }, { "severity": [ { "score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "type": "CVSS_V3" }, { "score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:H", "type": "CVSS_V3" }, { "score": "medium", "type": "Ubuntu" } ], "id": "CVE-2021-3984" }, { "severity": [ { "score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "type": "CVSS_V3" }, { "score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H", "type": "CVSS_V3" }, { "score": "medium", "type": "Ubuntu" } ], "id": "CVE-2021-4019" }, { "severity": [ { "score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "type": "CVSS_V3" }, { "score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H", "type": "CVSS_V3" }, { "score": "medium", "type": "Ubuntu" } ], "id": "CVE-2021-4069" } ], "ecosystem": "Ubuntu:20.04:LTS" } }