USN-6195-1

Source

https://ubuntu.com/security/notices/USN-6195-1

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/USN-6195-1.json

Related

• CVE-2022-0128
• CVE-2022-0156
• CVE-2022-0158
• CVE-2022-0393
• CVE-2022-0407
• CVE-2022-0696

Published

2023-07-03T00:47:59.905885Z

Modified

2023-07-03T00:47:59.905885Z

Details

It was discovered that Vim contained an out-of-bounds read vulnerability. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. (CVE-2022-0128)

It was discovered that Vim did not properly manage memory when freeing allocated memory. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. (CVE-2022-0156)

It was discovered that Vim contained a heap-based buffer overflow vulnerability. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. (CVE-2022-0158)

It was discovered that Vim did not properly manage memory when recording and using select mode. An attacker could possibly use this issue to cause a denial of service. (CVE-2022-0393)

It was discovered that Vim incorrectly handled certain memory operations during a visual block yank. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. (CVE-2022-0407)

It was discovered that Vim contained a NULL pointer dereference vulnerability when switching tabpages. An attacker could possible use this issue to cause a denial of service. (CVE-2022-0696)

References

• https://ubuntu.com/security/notices/USN-6195-1
• https://ubuntu.com/security/CVE-2022-0128
• https://ubuntu.com/security/CVE-2022-0156
• https://ubuntu.com/security/CVE-2022-0158
• https://ubuntu.com/security/CVE-2022-0393
• https://ubuntu.com/security/CVE-2022-0407
• https://ubuntu.com/security/CVE-2022-0696