PT-2024-2722 · Vim+7 · Vim+7

Henices

Published

2024-02-05

Updated

2026-03-29

CVE-2024-22667

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Vim versions prior to 9.0.2142

Description The issue is related to a stack-based buffer overflow in the did set langmap() function of the Vim text editor. This overflow occurs because did set langmap in map.c calls sprintf to write to the error buffer that is passed down to the option callback functions. Exploitation of this issue may allow an attacker to execute arbitrary code.

Recommendations For versions prior to 9.0.2142, update to version 9.0.2142 or later to resolve the issue. As a temporary workaround, consider restricting the use of the did set langmap() function in map.c until a patch is applied. Additionally, be cautious when using the sprintf function to write to the error buffer, as it may lead to a stack-based buffer overflow.

Exploit

Fix

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

ALT-PU-2024-2682

ALT-PU-2024-3084

ALT-PU-2024-7203

AZL-34281

BDU:2024-02840

CVE-2024-22667

DLA-4097-1

MGASA-2024-0040

OPENSUSE-SU-2024_1287-1

ROSA-SA-2025-2610

SUSE-SU-2024:0783-1

SUSE-SU-2024:0871-1

SUSE-SU-2024:1287-1

USN-6698-1

Affected Products

Alt Linux

Astra Linux

Debian

Linuxmint

Red Os

Suse

Ubuntu

Vim

PT-2024-2722 · Vim+7 · Vim+7

CVE-2024-22667

Weakness Enumeration

Related Identifiers

Affected Products

References · 66