English | Deutsch | Español
 
Home ▼
Home About Us Contact Us Privacy Partner Programs Testimonials In Press Mailing Lists Abuse Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
Security
Audits ▼
Home Dedicated audits Advanced audits Standard audits Recurring audits No Risk audits Desktop audits Basic audit Security Seal FAQ Price/Feature Summary Order New Tests All Tests Confidentiality Vulnerability search Run Audit Scheduler IP Permissions Audit Configuration Editor Scan Queue Reminder Notification Schedule Seal Reports Reports Style Editor
Managed
DNS ▼
About Order FAQ Acceptable Use Policy Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password
Network
Monitor ▼
Enterprise Package Advanced Package Standard Package Free Trial FAQ Price/Feature Summary Order/Renew Examples
Configure/Status Alert Profiles
Research
Reports ▼
Home FAQ Glossary Archive
 Login/Register 
 
 Vulnerability   
Search   		     Search 324607 CVE descriptions
and 146377 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.1.12.2023.6302.1
Category:Ubuntu Local Security Checks
Title:Ubuntu: Security Advisory (USN-6302-1)
Summary:The remote host is missing an update for the 'vim' package(s) announced via the USN-6302-1 advisory.
Description:Summary:
The remote host is missing an update for the 'vim' package(s) announced via the USN-6302-1 advisory.

Vulnerability Insight:
It was discovered that Vim incorrectly handled memory when opening certain
files. If an attacker could trick a user into opening a specially crafted
file, it could cause Vim to crash, or possibly execute arbitrary code. This
issue only affected Ubuntu 22.04 LTS. (CVE-2022-2522, CVE-2022-2580,
CVE-2022-2817, CVE-2022-2819, CVE-2022-2862, CVE-2022-2889, CVE-2022-2982,
CVE-2022-3134)

It was discovered that Vim did not properly perform bounds checks in the
diff mode in certain situations. An attacker could possibly use this issue
to cause a denial of service. This issue only affected Ubuntu 18.04 LTS,
Ubuntu 20.04 LTS and Ubuntu 22.04 LTS. (CVE-2022-2598)

It was discovered that Vim did not properly perform bounds checks in
certain situations. An attacker could possibly use this issue to cause a
denial of service. This issue only affected Ubuntu 22.04 LTS.
(CVE-2022-2816)

It was discovered that Vim incorrectly handled memory when skipping
compiled code. An attacker could possibly use this issue to cause a denial
of service. This issue only affected Ubuntu 22.04 LTS. (CVE-2022-2874)

It was discovered that Vim incorrectly handled memory when opening certain
files. If an attacker could trick a user into opening a specially crafted
file, it could cause Vim to crash, or possibly execute arbitrary code. This
issue only affected Ubuntu 20.04 LTS and Ubuntu 22.04 LTS. (CVE-2022-3016,
CVE-2022-3037)

It was discovered that Vim incorrectly handled memory when invalid line
number on ':for' is ignored. An attacker could possibly use this issue to
cause a denial of service. (CVE-2022-3099)

It was discovered that Vim incorrectly handled memory when passing invalid
arguments to the assert_fails() method. An attacker could possibly use this
issue to cause a denial of service. This issue only affected Ubuntu 22.04
LTS. (CVE-2022-3153)

Affected Software/OS:
'vim' package(s) on Ubuntu 14.04, Ubuntu 18.04, Ubuntu 20.04, Ubuntu 22.04.

Solution:
Please install the updated package(s).

CVSS Score:
7.2

CVSS Vector:
AV:L/AC:L/Au:N/C:C/I:C/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2022-2522
https://huntr.dev/bounties/3a2d83af-9542-4d93-8784-98b115135a22
https://security.gentoo.org/glsa/202305-16
https://github.com/vim/vim/commit/5fa9f23a63651a8abdb074b4fc2ec9b1adc6b089
https://github.com/vim/vim/commit/b9e717367c395490149495cf375911b5d9de889e
https://huntr.dev/bounties/3a2d83af-9542-4d93-8784-98b115135a22/
Common Vulnerability Exposure (CVE) ID: CVE-2022-2580
https://huntr.dev/bounties/c5f2f1d4-0441-4881-b19c-055acaa16249
https://github.com/vim/vim/commit/1e56bda9048a9625bce6e660938c834c5c15b07d
Common Vulnerability Exposure (CVE) ID: CVE-2022-2598
[debian-lts-announce] 20221108 [SECURITY] [DLA 3182-1] vim security update
https://lists.debian.org/debian-lts-announce/2022/11/msg00009.html
https://github.com/vim/vim/commit/4e677b9c40ccbc5f090971b31dc2fe07bf05541d
https://huntr.dev/bounties/2f08363a-47a2-422d-a7de-ce96a89ad08e
Common Vulnerability Exposure (CVE) ID: CVE-2022-2816
https://huntr.dev/bounties/e2a83037-fcf9-4218-b2b9-b7507dacde58
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CHFAR6OY6G77M6GXCJT75A4KITLNR6GO/
https://github.com/vim/vim/commit/dbdd16b62560413abcc3c8e893cc3010ccf31666
Common Vulnerability Exposure (CVE) ID: CVE-2022-2817
https://huntr.dev/bounties/a7b7d242-3d88-4bde-a681-6c986aff886f
https://github.com/vim/vim/commit/249e1b903a9c0460d618f6dcc59aeb8c03b24b20
Common Vulnerability Exposure (CVE) ID: CVE-2022-2819
https://huntr.dev/bounties/0a9bd71e-66b8-4eb1-9566-7dfd9b097e59
https://github.com/vim/vim/commit/d1d8f6bacb489036d0fd479c9dd3c0102c988889
Common Vulnerability Exposure (CVE) ID: CVE-2022-2862
https://huntr.dev/bounties/71180988-1ab6-4311-bca8-e9a879b06765
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XWOJOA7PZZAMBI5GFTL6PWHXMWSDLUXL/
https://github.com/vim/vim/commit/1889f499a4f248cd84e0e0bf6d0d820016774494
Common Vulnerability Exposure (CVE) ID: CVE-2022-2874
https://huntr.dev/bounties/95f97dfe-247d-475d-9740-b7adc71f4c79
https://github.com/vim/vim/commit/4875d6ab068f09df88d24d81de40dcd8d56e243d
Common Vulnerability Exposure (CVE) ID: CVE-2022-2889
https://huntr.dev/bounties/d1ac9817-825d-49ce-b514-1d5b12b6bdaa
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/C72HDIMR3KTTAO7QGTXWUMPBNFUFIBRD/
https://github.com/vim/vim/commit/91c7cbfe31bbef57d5fcf7d76989fc159f73ef15
Common Vulnerability Exposure (CVE) ID: CVE-2022-2982
https://huntr.dev/bounties/53f53d9a-ba8a-4985-b7ba-23efbe6833be
https://github.com/vim/vim/commit/d6c67629ed05aae436164eec474832daf8ba7420
Common Vulnerability Exposure (CVE) ID: CVE-2022-3016
https://huntr.dev/bounties/260516c2-5c4a-4b7f-a01c-04b1aeeea371
https://github.com/vim/vim/commit/6d24a51b94beb1991cddce221f90b455e2d50db7
Common Vulnerability Exposure (CVE) ID: CVE-2022-3037
https://huntr.dev/bounties/af4c2f2d-d754-4607-b565-9e92f3f717b5
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RY3GEN2Q46ZJKSNHTN2XB6B3VAJBEILN/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VHJ6LCLHGGVI2U6ZHXHTZ2PYP4STC23N/
https://github.com/vim/vim/commit/4f1b083be43f351bc107541e7b0c9655a5d2c0bb
Common Vulnerability Exposure (CVE) ID: CVE-2022-3099
https://huntr.dev/bounties/403210c7-6cc7-4874-8934-b57f88bd4f5e
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DVWBI4BVTBUMNW4NMB3WZZDQJBKIGXI3/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LLK2RMZEECKKWUQK7J46D2FQZOXFQLTC/
https://github.com/vim/vim/commit/35d21c6830fc2d68aca838424a0e786821c5891c
Common Vulnerability Exposure (CVE) ID: CVE-2022-3134
https://huntr.dev/bounties/6ec79e49-c7ab-4cd6-a517-e7934c2eb9dc
https://github.com/vim/vim/commit/ccfde4d028e891a41e3548323c3d47b06fb0b83e
Common Vulnerability Exposure (CVE) ID: CVE-2022-3153
https://huntr.dev/bounties/68331124-620d-48bc-a8fa-cd947b26270a
https://github.com/vim/vim/commit/1540d334a04d874c2aa9d26b82dbbcd4bc5a78de
CopyrightCopyright (C) 2023 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.



© 1998-2025 E-Soft Inc. All rights reserved.