USN-5995-1
- Source
- https://ubuntu.com/security/notices/USN-5995-1
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-5995-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/USN-5995-1
- Related
- Published
- 2023-04-04T08:58:38.806133Z
- Modified
- 2023-04-04T08:58:38.806133Z
- Summary
- vim vulnerabilities
- Details
-
It was discovered that Vim incorrectly handled memory when opening certain files. If an attacker could trick a user into opening a specially crafted file, it could cause Vim to crash, or possible execute arbitrary code. This issue only affected Ubuntu 14.04 ESM, Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, and Ubuntu 22.04 LTS. (CVE-2022-0413, CVE-2022-1629, CVE-2022-1674, CVE-2022-1733, CVE-2022-1735, CVE-2022-1785, CVE-2022-1796, CVE-2022-1851, CVE-2022-1898, CVE-2022-1942, CVE-2022-1968, CVE-2022-2124, CVE-2022-2125, CVE-2022-2126, CVE-2022-2129, CVE-2022-2175, CVE-2022-2183, CVE-2022-2206, CVE-2022-2304, CVE-2022-2345, CVE-2022-2581)
It was discovered that Vim incorrectly handled memory when opening certain files. If an attacker could trick a user into opening a specially crafted file, it could cause Vim to crash, or possible execute arbitrary code. This issue only affected Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, and Ubuntu 22.04 LTS. (CVE-2022-1720, CVE-2022-2571, CVE-2022-2845, CVE-2022-2849, CVE-2022-2923)
It was discovered that Vim incorrectly handled memory when opening certain files. If an attacker could trick a user into opening a specially crafted file, it could cause Vim to crash, or possible execute arbitrary code. This issue only affected Ubuntu 20.04 LTS and Ubuntu 22.04 LTS. (CVE-2022-1927, CVE-2022-2344)
It was discovered that Vim incorrectly handled memory when opening certain files. If an attacker could trick a user into opening a specially crafted file, it could cause Vim to crash, or possible execute arbitrary code. This issue only affected Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, and Ubuntu 22.10. (CVE-2022-2946)
It was discovered that Vim incorrectly handled memory when opening certain files. If an attacker could trick a user into opening a specially crafted file, it could cause Vim to crash, or possible execute arbitrary code. This issue only affected Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, and Ubuntu 22.10. (CVE-2022-2980)
- References
-
- https://ubuntu.com/security/notices/USN-5995-1
- https://ubuntu.com/security/CVE-2022-0413
- https://ubuntu.com/security/CVE-2022-1629
- https://ubuntu.com/security/CVE-2022-1674
- https://ubuntu.com/security/CVE-2022-1720
- https://ubuntu.com/security/CVE-2022-1733
- https://ubuntu.com/security/CVE-2022-1735
- https://ubuntu.com/security/CVE-2022-1785
- https://ubuntu.com/security/CVE-2022-1796
- https://ubuntu.com/security/CVE-2022-1851
- https://ubuntu.com/security/CVE-2022-1898
- https://ubuntu.com/security/CVE-2022-1927
- https://ubuntu.com/security/CVE-2022-1942
- https://ubuntu.com/security/CVE-2022-1968
- https://ubuntu.com/security/CVE-2022-2124
- https://ubuntu.com/security/CVE-2022-2125
- https://ubuntu.com/security/CVE-2022-2126
- https://ubuntu.com/security/CVE-2022-2129
- https://ubuntu.com/security/CVE-2022-2175
- https://ubuntu.com/security/CVE-2022-2183
- https://ubuntu.com/security/CVE-2022-2206
- https://ubuntu.com/security/CVE-2022-2304
- https://ubuntu.com/security/CVE-2022-2344
- https://ubuntu.com/security/CVE-2022-2345
- https://ubuntu.com/security/CVE-2022-2571
- https://ubuntu.com/security/CVE-2022-2581
- https://ubuntu.com/security/CVE-2022-2845
- https://ubuntu.com/security/CVE-2022-2849
- https://ubuntu.com/security/CVE-2022-2923
- https://ubuntu.com/security/CVE-2022-2946
- https://ubuntu.com/security/CVE-2022-2980
Affected packages
Ubuntu:Pro:14.04:LTS / vim
Package
- Name
- vim
- Purl
- pkg:deb/ubuntu/vim?arch=src?distro=trusty/esm
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2:7.4.052-1ubuntu3.1+esm8
Affected versions
2:7.*
2:7.4.000-1ubuntu2
2:7.4.052-1ubuntu1
2:7.4.052-1ubuntu2
2:7.4.052-1ubuntu3
2:7.4.052-1ubuntu3.1
2:7.4.052-1ubuntu3.1+esm1
2:7.4.052-1ubuntu3.1+esm3
2:7.4.052-1ubuntu3.1+esm4
2:7.4.052-1ubuntu3.1+esm5
2:7.4.052-1ubuntu3.1+esm6
2:7.4.052-1ubuntu3.1+esm7
Ecosystem specific
{
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_version": "2:7.4.052-1ubuntu3.1+esm8",
"binary_name": "vim"
},
{
"binary_version": "2:7.4.052-1ubuntu3.1+esm8",
"binary_name": "vim-athena"
},
{
"binary_version": "2:7.4.052-1ubuntu3.1+esm8",
"binary_name": "vim-athena-dbgsym"
},
{
"binary_version": "2:7.4.052-1ubuntu3.1+esm8",
"binary_name": "vim-common"
},
{
"binary_version": "2:7.4.052-1ubuntu3.1+esm8",
"binary_name": "vim-common-dbgsym"
},
{
"binary_version": "2:7.4.052-1ubuntu3.1+esm8",
"binary_name": "vim-dbg"
},
{
"binary_version": "2:7.4.052-1ubuntu3.1+esm8",
"binary_name": "vim-dbgsym"
},
{
"binary_version": "2:7.4.052-1ubuntu3.1+esm8",
"binary_name": "vim-doc"
},
{
"binary_version": "2:7.4.052-1ubuntu3.1+esm8",
"binary_name": "vim-gnome"
},
{
"binary_version": "2:7.4.052-1ubuntu3.1+esm8",
"binary_name": "vim-gnome-dbgsym"
},
{
"binary_version": "2:7.4.052-1ubuntu3.1+esm8",
"binary_name": "vim-gtk"
},
{
"binary_version": "2:7.4.052-1ubuntu3.1+esm8",
"binary_name": "vim-gtk-dbgsym"
},
{
"binary_version": "2:7.4.052-1ubuntu3.1+esm8",
"binary_name": "vim-gui-common"
},
{
"binary_version": "2:7.4.052-1ubuntu3.1+esm8",
"binary_name": "vim-lesstif"
},
{
"binary_version": "2:7.4.052-1ubuntu3.1+esm8",
"binary_name": "vim-nox"
},
{
"binary_version": "2:7.4.052-1ubuntu3.1+esm8",
"binary_name": "vim-nox-dbgsym"
},
{
"binary_version": "2:7.4.052-1ubuntu3.1+esm8",
"binary_name": "vim-runtime"
},
{
"binary_version": "2:7.4.052-1ubuntu3.1+esm8",
"binary_name": "vim-tiny"
},
{
"binary_version": "2:7.4.052-1ubuntu3.1+esm8",
"binary_name": "vim-tiny-dbgsym"
}
]
}
Ubuntu:18.04:LTS / vim
Package
- Name
- vim
- Purl
- pkg:deb/ubuntu/vim?arch=src?distro=bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2:8.0.1453-1ubuntu1.12
Affected versions
2:8.*
2:8.0.0197-4ubuntu5
2:8.0.1144-1ubuntu1
2:8.0.1401-1ubuntu1
2:8.0.1401-1ubuntu2
2:8.0.1401-1ubuntu3
2:8.0.1453-1ubuntu1
2:8.0.1453-1ubuntu1.1
2:8.0.1453-1ubuntu1.3
2:8.0.1453-1ubuntu1.4
2:8.0.1453-1ubuntu1.6
2:8.0.1453-1ubuntu1.7
2:8.0.1453-1ubuntu1.8
2:8.0.1453-1ubuntu1.9
2:8.0.1453-1ubuntu1.10
2:8.0.1453-1ubuntu1.11
Ecosystem specific
{
"availability": "No subscription required",
"binaries": [
{
"binary_version": "2:8.0.1453-1ubuntu1.12",
"binary_name": "vim"
},
{
"binary_version": "2:8.0.1453-1ubuntu1.12",
"binary_name": "vim-athena"
},
{
"binary_version": "2:8.0.1453-1ubuntu1.12",
"binary_name": "vim-athena-dbgsym"
},
{
"binary_version": "2:8.0.1453-1ubuntu1.12",
"binary_name": "vim-common"
},
{
"binary_version": "2:8.0.1453-1ubuntu1.12",
"binary_name": "vim-dbgsym"
},
{
"binary_version": "2:8.0.1453-1ubuntu1.12",
"binary_name": "vim-doc"
},
{
"binary_version": "2:8.0.1453-1ubuntu1.12",
"binary_name": "vim-gnome"
},
{
"binary_version": "2:8.0.1453-1ubuntu1.12",
"binary_name": "vim-gtk"
},
{
"binary_version": "2:8.0.1453-1ubuntu1.12",
"binary_name": "vim-gtk-dbgsym"
},
{
"binary_version": "2:8.0.1453-1ubuntu1.12",
"binary_name": "vim-gtk3"
},
{
"binary_version": "2:8.0.1453-1ubuntu1.12",
"binary_name": "vim-gtk3-dbgsym"
},
{
"binary_version": "2:8.0.1453-1ubuntu1.12",
"binary_name": "vim-gui-common"
},
{
"binary_version": "2:8.0.1453-1ubuntu1.12",
"binary_name": "vim-nox"
},
{
"binary_version": "2:8.0.1453-1ubuntu1.12",
"binary_name": "vim-nox-dbgsym"
},
{
"binary_version": "2:8.0.1453-1ubuntu1.12",
"binary_name": "vim-runtime"
},
{
"binary_version": "2:8.0.1453-1ubuntu1.12",
"binary_name": "vim-tiny"
},
{
"binary_version": "2:8.0.1453-1ubuntu1.12",
"binary_name": "vim-tiny-dbgsym"
},
{
"binary_version": "2:8.0.1453-1ubuntu1.12",
"binary_name": "xxd"
},
{
"binary_version": "2:8.0.1453-1ubuntu1.12",
"binary_name": "xxd-dbgsym"
}
]
}
Ubuntu:20.04:LTS / vim
Package
- Name
- vim
- Purl
- pkg:deb/ubuntu/vim?arch=src?distro=focal
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2:8.1.2269-1ubuntu5.13
Affected versions
2:8.*
2:8.1.0875-5ubuntu2
2:8.1.0875-5ubuntu3
2:8.1.0875-5ubuntu4
2:8.1.2269-1ubuntu1
2:8.1.2269-1ubuntu4
2:8.1.2269-1ubuntu5
2:8.1.2269-1ubuntu5.3
2:8.1.2269-1ubuntu5.4
2:8.1.2269-1ubuntu5.6
2:8.1.2269-1ubuntu5.7
2:8.1.2269-1ubuntu5.8
2:8.1.2269-1ubuntu5.9
2:8.1.2269-1ubuntu5.11
2:8.1.2269-1ubuntu5.12
Ecosystem specific
{
"availability": "No subscription required",
"binaries": [
{
"binary_version": "2:8.1.2269-1ubuntu5.13",
"binary_name": "vim"
},
{
"binary_version": "2:8.1.2269-1ubuntu5.13",
"binary_name": "vim-athena"
},
{
"binary_version": "2:8.1.2269-1ubuntu5.13",
"binary_name": "vim-athena-dbgsym"
},
{
"binary_version": "2:8.1.2269-1ubuntu5.13",
"binary_name": "vim-common"
},
{
"binary_version": "2:8.1.2269-1ubuntu5.13",
"binary_name": "vim-dbgsym"
},
{
"binary_version": "2:8.1.2269-1ubuntu5.13",
"binary_name": "vim-doc"
},
{
"binary_version": "2:8.1.2269-1ubuntu5.13",
"binary_name": "vim-gtk"
},
{
"binary_version": "2:8.1.2269-1ubuntu5.13",
"binary_name": "vim-gtk3"
},
{
"binary_version": "2:8.1.2269-1ubuntu5.13",
"binary_name": "vim-gtk3-dbgsym"
},
{
"binary_version": "2:8.1.2269-1ubuntu5.13",
"binary_name": "vim-gui-common"
},
{
"binary_version": "2:8.1.2269-1ubuntu5.13",
"binary_name": "vim-nox"
},
{
"binary_version": "2:8.1.2269-1ubuntu5.13",
"binary_name": "vim-nox-dbgsym"
},
{
"binary_version": "2:8.1.2269-1ubuntu5.13",
"binary_name": "vim-runtime"
},
{
"binary_version": "2:8.1.2269-1ubuntu5.13",
"binary_name": "vim-tiny"
},
{
"binary_version": "2:8.1.2269-1ubuntu5.13",
"binary_name": "vim-tiny-dbgsym"
},
{
"binary_version": "2:8.1.2269-1ubuntu5.13",
"binary_name": "xxd"
},
{
"binary_version": "2:8.1.2269-1ubuntu5.13",
"binary_name": "xxd-dbgsym"
}
]
}
Ubuntu:22.04:LTS / vim
Package
- Name
- vim
- Purl
- pkg:deb/ubuntu/vim?arch=src?distro=jammy
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2:8.2.3995-1ubuntu2.5
Affected versions
2:8.*
2:8.2.2434-3ubuntu3
2:8.2.2434-3ubuntu4
2:8.2.3565-1ubuntu1
2:8.2.3565-1ubuntu2
2:8.2.3565-1ubuntu3
2:8.2.3565-1ubuntu5
2:8.2.3995-1ubuntu1
2:8.2.3995-1ubuntu2
2:8.2.3995-1ubuntu2.1
2:8.2.3995-1ubuntu2.3
2:8.2.3995-1ubuntu2.4
Ecosystem specific
{
"availability": "No subscription required",
"binaries": [
{
"binary_version": "2:8.2.3995-1ubuntu2.5",
"binary_name": "vim"
},
{
"binary_version": "2:8.2.3995-1ubuntu2.5",
"binary_name": "vim-athena"
},
{
"binary_version": "2:8.2.3995-1ubuntu2.5",
"binary_name": "vim-athena-dbgsym"
},
{
"binary_version": "2:8.2.3995-1ubuntu2.5",
"binary_name": "vim-common"
},
{
"binary_version": "2:8.2.3995-1ubuntu2.5",
"binary_name": "vim-dbgsym"
},
{
"binary_version": "2:8.2.3995-1ubuntu2.5",
"binary_name": "vim-doc"
},
{
"binary_version": "2:8.2.3995-1ubuntu2.5",
"binary_name": "vim-gtk"
},
{
"binary_version": "2:8.2.3995-1ubuntu2.5",
"binary_name": "vim-gtk3"
},
{
"binary_version": "2:8.2.3995-1ubuntu2.5",
"binary_name": "vim-gtk3-dbgsym"
},
{
"binary_version": "2:8.2.3995-1ubuntu2.5",
"binary_name": "vim-gui-common"
},
{
"binary_version": "2:8.2.3995-1ubuntu2.5",
"binary_name": "vim-nox"
},
{
"binary_version": "2:8.2.3995-1ubuntu2.5",
"binary_name": "vim-nox-dbgsym"
},
{
"binary_version": "2:8.2.3995-1ubuntu2.5",
"binary_name": "vim-runtime"
},
{
"binary_version": "2:8.2.3995-1ubuntu2.5",
"binary_name": "vim-tiny"
},
{
"binary_version": "2:8.2.3995-1ubuntu2.5",
"binary_name": "vim-tiny-dbgsym"
},
{
"binary_version": "2:8.2.3995-1ubuntu2.5",
"binary_name": "xxd"
},
{
"binary_version": "2:8.2.3995-1ubuntu2.5",
"binary_name": "xxd-dbgsym"
}
]
}