PT-2023-1226 · Vim+9 · Vim+9

Brammool

Published

2022-09-15

Updated

2023-08-31

CVE-2022-47024

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Vim versions 8.1.2269 through 9.0.0339

Description A null pointer dereference issue was discovered in the gui x11 create blank mouse function in gui x11.c, allowing attackers to cause denial of service or other unspecified impacts. This issue can be exploited using a specially crafted file.

Recommendations For versions 8.1.2269 through 9.0.0339, consider disabling the gui x11 create blank mouse function as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

ALSA-2023:0958

ALT-PU-2022-2616

ALT-PU-2022-2704

ALT-PU-2022-2714

ALT-PU-2022-3192

BDU:2023-00450

CVE-2022-47024

MGASA-2023-0075

OESA-2023-1061

RHSA-2023:0958

RHSA-2023_0958

RLSA-2023:0958

USN-5836-1

USN-5963-1

Affected Products

Alt Linux

Almalinux

Astra Linux

Debian

Linuxmint

Red Hat

Red Os

Rocky Linux

Ubuntu

Vim

PT-2023-1226 · Vim+9 · Vim+9

CVE-2022-47024

Weakness Enumeration

Related Identifiers

Affected Products

References · 54