AVG-2662 log
| Package | gvim, vim |
| Status | Fixed |
| Severity | High |
| Type | arbitrary code execution |
| Affected | 8.2.4464-1 |
| Fixed | 8.2.4651-1 |
| Current | 9.1.0866-1 [extra] |
| Ticket | None |
| Created | Tue Apr 5 22:15:52 2022 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2022-1160 | High | No | Arbitrary code execution | "source" can read past end of copied line resulting in heap buffer overflow in get_one_sourceline in vim prior to 8.2.4647 |
| CVE-2022-1154 | High | No | Arbitrary code execution | Use after free in utf_ptr2char in vim prior to 8.2.4646 while using buffer line after it has been freed in old regexp engine. |