USN-5801-1
- Source
- https://ubuntu.com/security/notices/USN-5801-1
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-5801-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/USN-5801-1
- Related
- Published
- 2023-01-12T21:31:55.931099Z
- Modified
- 2023-01-12T21:31:55.931099Z
- Summary
- vim vulnerabilities
- Details
-
It was discovered that Vim makes illegal memory calls when pasting brackets in Ex mode. An attacker could possibly use this to crash Vim, access or modify memory, or execute arbitrary commands. This issue affected only Ubuntu 20.04 and 22.04 (CVE-2022-0392)
It was discovered that Vim makes illegal memory calls when making certain retab calls. An attacker could possibly use this to crash Vim, access or modify memory, or execute arbitrary commands. (CVE-2022-0417)
- References
Affected packages
Ubuntu:18.04:LTS / vim
Package
- Name
- vim
- Purl
- pkg:deb/ubuntu/vim?arch=src?distro=bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2:8.0.1453-1ubuntu1.10
Affected versions
2:8.*
2:8.0.0197-4ubuntu5
2:8.0.1144-1ubuntu1
2:8.0.1401-1ubuntu1
2:8.0.1401-1ubuntu2
2:8.0.1401-1ubuntu3
2:8.0.1453-1ubuntu1
2:8.0.1453-1ubuntu1.1
2:8.0.1453-1ubuntu1.3
2:8.0.1453-1ubuntu1.4
2:8.0.1453-1ubuntu1.6
2:8.0.1453-1ubuntu1.7
2:8.0.1453-1ubuntu1.8
2:8.0.1453-1ubuntu1.9
Ecosystem specific
{
"availability": "No subscription required",
"binaries": [
{
"binary_version": "2:8.0.1453-1ubuntu1.10",
"binary_name": "vim"
},
{
"binary_version": "2:8.0.1453-1ubuntu1.10",
"binary_name": "vim-athena"
},
{
"binary_version": "2:8.0.1453-1ubuntu1.10",
"binary_name": "vim-athena-dbgsym"
},
{
"binary_version": "2:8.0.1453-1ubuntu1.10",
"binary_name": "vim-common"
},
{
"binary_version": "2:8.0.1453-1ubuntu1.10",
"binary_name": "vim-dbgsym"
},
{
"binary_version": "2:8.0.1453-1ubuntu1.10",
"binary_name": "vim-doc"
},
{
"binary_version": "2:8.0.1453-1ubuntu1.10",
"binary_name": "vim-gnome"
},
{
"binary_version": "2:8.0.1453-1ubuntu1.10",
"binary_name": "vim-gtk"
},
{
"binary_version": "2:8.0.1453-1ubuntu1.10",
"binary_name": "vim-gtk-dbgsym"
},
{
"binary_version": "2:8.0.1453-1ubuntu1.10",
"binary_name": "vim-gtk3"
},
{
"binary_version": "2:8.0.1453-1ubuntu1.10",
"binary_name": "vim-gtk3-dbgsym"
},
{
"binary_version": "2:8.0.1453-1ubuntu1.10",
"binary_name": "vim-gui-common"
},
{
"binary_version": "2:8.0.1453-1ubuntu1.10",
"binary_name": "vim-nox"
},
{
"binary_version": "2:8.0.1453-1ubuntu1.10",
"binary_name": "vim-nox-dbgsym"
},
{
"binary_version": "2:8.0.1453-1ubuntu1.10",
"binary_name": "vim-runtime"
},
{
"binary_version": "2:8.0.1453-1ubuntu1.10",
"binary_name": "vim-tiny"
},
{
"binary_version": "2:8.0.1453-1ubuntu1.10",
"binary_name": "vim-tiny-dbgsym"
},
{
"binary_version": "2:8.0.1453-1ubuntu1.10",
"binary_name": "xxd"
},
{
"binary_version": "2:8.0.1453-1ubuntu1.10",
"binary_name": "xxd-dbgsym"
}
]
}
Ubuntu:20.04:LTS / vim
Package
- Name
- vim
- Purl
- pkg:deb/ubuntu/vim?arch=src?distro=focal
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2:8.1.2269-1ubuntu5.11
Affected versions
2:8.*
2:8.1.0875-5ubuntu2
2:8.1.0875-5ubuntu3
2:8.1.0875-5ubuntu4
2:8.1.2269-1ubuntu1
2:8.1.2269-1ubuntu4
2:8.1.2269-1ubuntu5
2:8.1.2269-1ubuntu5.3
2:8.1.2269-1ubuntu5.4
2:8.1.2269-1ubuntu5.6
2:8.1.2269-1ubuntu5.7
2:8.1.2269-1ubuntu5.8
2:8.1.2269-1ubuntu5.9
Ecosystem specific
{
"availability": "No subscription required",
"binaries": [
{
"binary_version": "2:8.1.2269-1ubuntu5.11",
"binary_name": "vim"
},
{
"binary_version": "2:8.1.2269-1ubuntu5.11",
"binary_name": "vim-athena"
},
{
"binary_version": "2:8.1.2269-1ubuntu5.11",
"binary_name": "vim-athena-dbgsym"
},
{
"binary_version": "2:8.1.2269-1ubuntu5.11",
"binary_name": "vim-common"
},
{
"binary_version": "2:8.1.2269-1ubuntu5.11",
"binary_name": "vim-dbgsym"
},
{
"binary_version": "2:8.1.2269-1ubuntu5.11",
"binary_name": "vim-doc"
},
{
"binary_version": "2:8.1.2269-1ubuntu5.11",
"binary_name": "vim-gtk"
},
{
"binary_version": "2:8.1.2269-1ubuntu5.11",
"binary_name": "vim-gtk3"
},
{
"binary_version": "2:8.1.2269-1ubuntu5.11",
"binary_name": "vim-gtk3-dbgsym"
},
{
"binary_version": "2:8.1.2269-1ubuntu5.11",
"binary_name": "vim-gui-common"
},
{
"binary_version": "2:8.1.2269-1ubuntu5.11",
"binary_name": "vim-nox"
},
{
"binary_version": "2:8.1.2269-1ubuntu5.11",
"binary_name": "vim-nox-dbgsym"
},
{
"binary_version": "2:8.1.2269-1ubuntu5.11",
"binary_name": "vim-runtime"
},
{
"binary_version": "2:8.1.2269-1ubuntu5.11",
"binary_name": "vim-tiny"
},
{
"binary_version": "2:8.1.2269-1ubuntu5.11",
"binary_name": "vim-tiny-dbgsym"
},
{
"binary_version": "2:8.1.2269-1ubuntu5.11",
"binary_name": "xxd"
},
{
"binary_version": "2:8.1.2269-1ubuntu5.11",
"binary_name": "xxd-dbgsym"
}
]
}
Ubuntu:22.04:LTS / vim
Package
- Name
- vim
- Purl
- pkg:deb/ubuntu/vim?arch=src?distro=jammy
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2:8.2.3995-1ubuntu2.3
Affected versions
2:8.*
2:8.2.2434-3ubuntu3
2:8.2.2434-3ubuntu4
2:8.2.3565-1ubuntu1
2:8.2.3565-1ubuntu2
2:8.2.3565-1ubuntu3
2:8.2.3565-1ubuntu5
2:8.2.3995-1ubuntu1
2:8.2.3995-1ubuntu2
2:8.2.3995-1ubuntu2.1
Ecosystem specific
{
"availability": "No subscription required",
"binaries": [
{
"binary_version": "2:8.2.3995-1ubuntu2.3",
"binary_name": "vim"
},
{
"binary_version": "2:8.2.3995-1ubuntu2.3",
"binary_name": "vim-athena"
},
{
"binary_version": "2:8.2.3995-1ubuntu2.3",
"binary_name": "vim-athena-dbgsym"
},
{
"binary_version": "2:8.2.3995-1ubuntu2.3",
"binary_name": "vim-common"
},
{
"binary_version": "2:8.2.3995-1ubuntu2.3",
"binary_name": "vim-dbgsym"
},
{
"binary_version": "2:8.2.3995-1ubuntu2.3",
"binary_name": "vim-doc"
},
{
"binary_version": "2:8.2.3995-1ubuntu2.3",
"binary_name": "vim-gtk"
},
{
"binary_version": "2:8.2.3995-1ubuntu2.3",
"binary_name": "vim-gtk3"
},
{
"binary_version": "2:8.2.3995-1ubuntu2.3",
"binary_name": "vim-gtk3-dbgsym"
},
{
"binary_version": "2:8.2.3995-1ubuntu2.3",
"binary_name": "vim-gui-common"
},
{
"binary_version": "2:8.2.3995-1ubuntu2.3",
"binary_name": "vim-nox"
},
{
"binary_version": "2:8.2.3995-1ubuntu2.3",
"binary_name": "vim-nox-dbgsym"
},
{
"binary_version": "2:8.2.3995-1ubuntu2.3",
"binary_name": "vim-runtime"
},
{
"binary_version": "2:8.2.3995-1ubuntu2.3",
"binary_name": "vim-tiny"
},
{
"binary_version": "2:8.2.3995-1ubuntu2.3",
"binary_name": "vim-tiny-dbgsym"
},
{
"binary_version": "2:8.2.3995-1ubuntu2.3",
"binary_name": "xxd"
},
{
"binary_version": "2:8.2.3995-1ubuntu2.3",
"binary_name": "xxd-dbgsym"
}
]
}