PT-2024-30670 · Vim+6 · Vim+6

Suyueguo

·

Published

2024-08-25

·

Updated

2025-03-30

·

CVE-2024-43802

CVSS v3.1

4.5

Medium

VectorAV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L
Name of the Vulnerable Software and Affected Versions Vim versions prior to 9.1.0697
Description The issue arises when flushing the typeahead buffer in Vim, as it moves the current position without checking for sufficient space to handle the next characters. This can lead to a heap-buffer overflow, for example, in the ins typebuf() function, causing a crash. The impact is considered low due to the difficulty in reproducing the issue, which seems to occur when error messages are combined with several long mappings, potentially moving the position out of the valid buffer size.
Recommendations For versions prior to 9.1.0697, upgrade to Vim patch v9.1.0697 or later to resolve the issue. At the moment, there are no known workarounds for this issue.

Exploit

Fix

DoS

Heap Based Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-122

Related Identifiers

AZL-48221
AZL-48282
BDU:2025-11469
CVE-2024-43802
DLA-4097-1
GHSA-4GHR-C62X-CQFH
OESA-2024-2115
OPENSUSE-SU-2025_0723-1
SUSE-SU-2025:0722-1
SUSE-SU-2025:0723-1
SUSE-SU-2025:0724-1
SUSE-SU-2025:20128-1
SUSE-SU-2025_0722-1
SUSE-SU-2025_0723-1
USN-7048-1
USN-7048-2

Affected Products

Astra Linux
Debian
Linuxmint
Red Os
Suse
Ubuntu
Vim