Headline

RHSA-2022:0894: Red Hat Security Advisory: vim security update

An update for vim is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

Related CVEs:

CVE-2022-0261: vim: Heap-based buffer overflow in block_insert() in src/ops.c
CVE-2022-0318: vim: Heap-based buffer overflow in utf_head_off() in mbyte.c
CVE-2022-0359: vim: Heap-based buffer overflow in init_ccline() in ex_getln.c
CVE-2022-0361: vim: Illegal memory access when copying lines in visual mode leads to heap buffer overflow
CVE-2022-0392: vim: Heap-based buffer overflow in getexmodeline() in ex_getln.c
CVE-2022-0413: vim: Use after free in src/ex_cmds.c

3 years ago

Red Hat Security Data

Open in Source

#vulnerability #web #linux #red_hat #nodejs #js #java #kubernetes

Skip to navigation Skip to main content

Utilities

Subscriptions
Downloads
Containers
Support Cases

Red Hat Customer Portal

Infrastructure and Management

Red Hat Enterprise Linux
Red Hat Virtualization
Red Hat Identity Management
Red Hat Directory Server
Red Hat Certificate System
Red Hat Satellite
Red Hat Subscription Management
Red Hat Update Infrastructure
Red Hat Insights
Red Hat Ansible Automation Platform

Cloud Computing

Red Hat OpenShift
Red Hat CloudForms
Red Hat OpenStack Platform
Red Hat OpenShift Container Platform
Red Hat OpenShift Data Science
Red Hat OpenShift Online
Red Hat OpenShift Dedicated
Red Hat Advanced Cluster Security for Kubernetes
Red Hat Advanced Cluster Management for Kubernetes
Red Hat Quay
Red Hat CodeReady Workspaces
Red Hat OpenShift Service on AWS

Storage

Red Hat Gluster Storage
Red Hat Hyperconverged Infrastructure
Red Hat Ceph Storage
Red Hat OpenShift Data Foundation

Runtimes

Red Hat Runtimes
Red Hat JBoss Enterprise Application Platform
Red Hat Data Grid
Red Hat JBoss Web Server
Red Hat Single Sign On
Red Hat support for Spring Boot
Red Hat build of Node.js
Red Hat build of Thorntail
Red Hat build of Eclipse Vert.x
Red Hat build of OpenJDK
Red Hat build of Quarkus
Red Hat CodeReady Studio

Integration and Automation

Red Hat Process Automation
Red Hat Process Automation Manager
Red Hat Decision Manager

All Products

Issued:

2022-03-15

Updated:

2022-03-15

RHSA-2022:0894 - Security Advisory

Overview
Updated Packages

Synopsis

Moderate: vim security update

Type/Severity

Security Advisory: Moderate

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for vim is now available for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Vim (Vi IMproved) is an updated and improved version of the vi editor.

Security Fix(es):

vim: Heap-based buffer overflow in block_insert() in src/ops.c (CVE-2022-0261)
vim: Heap-based buffer overflow in utf_head_off() in mbyte.c (CVE-2022-0318)
vim: Heap-based buffer overflow in init_ccline() in ex_getln.c (CVE-2022-0359)
vim: Illegal memory access when copying lines in visual mode leads to heap buffer overflow (CVE-2022-0361)
vim: Heap-based buffer overflow in getexmodeline() in ex_getln.c (CVE-2022-0392)
vim: Use after free in src/ex_cmds.c (CVE-2022-0413)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Affected Products

Red Hat Enterprise Linux for x86_64 8 x86_64
Red Hat Enterprise Linux for IBM z Systems 8 s390x
Red Hat Enterprise Linux for Power, little endian 8 ppc64le
Red Hat Virtualization Host 4 for RHEL 8 x86_64
Red Hat Enterprise Linux for ARM 64 8 aarch64

Fixes

BZ - 2044607 - CVE-2022-0261 vim: Heap-based buffer overflow in block_insert() in src/ops.c
BZ - 2045355 - CVE-2022-0318 vim: Heap-based buffer overflow in utf_head_off() in mbyte.c
BZ - 2046479 - CVE-2022-0359 vim: Heap-based buffer overflow in init_ccline() in ex_getln.c
BZ - 2048519 - CVE-2022-0413 vim: Use after free in src/ex_cmds.c
BZ - 2049175 - CVE-2022-0392 vim: Heap-based buffer overflow in getexmodeline() in ex_getln.c
BZ - 2050053 - CVE-2022-0361 vim: Illegal memory access when copying lines in visual mode leads to heap buffer overflow

CVEs

CVE-2022-0261
CVE-2022-0318
CVE-2022-0359
CVE-2022-0361
CVE-2022-0392
CVE-2022-0413

Red Hat Enterprise Linux for IBM z Systems 8

SRPM

vim-8.0.1763-16.el8_5.12.src.rpm

SHA-256: 605196921fc17dd1d1c32e8689ee41c5ae5b1d72a5282f5e7b24ad00ea5dfe1e

s390x

vim-X11-8.0.1763-16.el8_5.12.s390x.rpm

SHA-256: a9983ede212da6acb11f949e4dcc4ae95f82fef623cbd705f99593588d3960ff

vim-X11-debuginfo-8.0.1763-16.el8_5.12.s390x.rpm

SHA-256: c594704fbf118ad1978d7ccabd200699b49f7bf4fdebd79d02157d1bb894f2ad

vim-X11-debuginfo-8.0.1763-16.el8_5.12.s390x.rpm

SHA-256: c594704fbf118ad1978d7ccabd200699b49f7bf4fdebd79d02157d1bb894f2ad

vim-common-8.0.1763-16.el8_5.12.s390x.rpm

SHA-256: e98204c17e53998c538f5374f65fddb877fafac35c8ffde38a008fe7ae843d7f

vim-common-debuginfo-8.0.1763-16.el8_5.12.s390x.rpm

SHA-256: 9bf958a69b74b484c60f7c67080fcfafd9b3d5e285ab2b38b1a4f6f359b3e054

vim-common-debuginfo-8.0.1763-16.el8_5.12.s390x.rpm

SHA-256: 9bf958a69b74b484c60f7c67080fcfafd9b3d5e285ab2b38b1a4f6f359b3e054

vim-debuginfo-8.0.1763-16.el8_5.12.s390x.rpm

SHA-256: c5d5c89f4afba6df9914c195f0ba4bb94876c7df3d8616a0f2ace30115a48ae9

vim-debuginfo-8.0.1763-16.el8_5.12.s390x.rpm

SHA-256: c5d5c89f4afba6df9914c195f0ba4bb94876c7df3d8616a0f2ace30115a48ae9

vim-debugsource-8.0.1763-16.el8_5.12.s390x.rpm

SHA-256: 27f8787597b8c2e9fdc96492616f6cf72e846c42ddc4962e585a749c9777c6ef

vim-debugsource-8.0.1763-16.el8_5.12.s390x.rpm

SHA-256: 27f8787597b8c2e9fdc96492616f6cf72e846c42ddc4962e585a749c9777c6ef

vim-enhanced-8.0.1763-16.el8_5.12.s390x.rpm

SHA-256: 4a14941b120a48aa36422fad286f94d72c9d68bf5761fc361c4e4f0c71980b0c

vim-enhanced-debuginfo-8.0.1763-16.el8_5.12.s390x.rpm

SHA-256: 724e8e69a19442f8170eb5e74827541f78daf4712adc3c1e6042adb010e15d9f

vim-enhanced-debuginfo-8.0.1763-16.el8_5.12.s390x.rpm

SHA-256: 724e8e69a19442f8170eb5e74827541f78daf4712adc3c1e6042adb010e15d9f

vim-filesystem-8.0.1763-16.el8_5.12.noarch.rpm

SHA-256: a0595728c732ee76f74b3ec889b20408dc7acc3c5a821ae05b3a51baef49fbab

vim-minimal-8.0.1763-16.el8_5.12.s390x.rpm

SHA-256: 82dc1e6134a48361280682f53e8076453029587005bd240906863a35dca6e35e

vim-minimal-debuginfo-8.0.1763-16.el8_5.12.s390x.rpm

SHA-256: 900a2c57ec2beb06939d5a8b7acf9f9c77ba6ff79c9b4230fafa9c6539caa0d4

vim-minimal-debuginfo-8.0.1763-16.el8_5.12.s390x.rpm

SHA-256: 900a2c57ec2beb06939d5a8b7acf9f9c77ba6ff79c9b4230fafa9c6539caa0d4

Red Hat Enterprise Linux for Power, little endian 8

SRPM

vim-8.0.1763-16.el8_5.12.src.rpm

SHA-256: 605196921fc17dd1d1c32e8689ee41c5ae5b1d72a5282f5e7b24ad00ea5dfe1e

ppc64le

vim-X11-8.0.1763-16.el8_5.12.ppc64le.rpm

SHA-256: 56feb7490ac37cb3a946dbc11b43e062eca83b324b8b6d69773d5ec4b25e80d4

vim-X11-debuginfo-8.0.1763-16.el8_5.12.ppc64le.rpm

SHA-256: dbb35e524af0f1463a8aebe2ee736326d47bb84411e271732a7b16e391d65a0e

vim-X11-debuginfo-8.0.1763-16.el8_5.12.ppc64le.rpm

SHA-256: dbb35e524af0f1463a8aebe2ee736326d47bb84411e271732a7b16e391d65a0e

vim-common-8.0.1763-16.el8_5.12.ppc64le.rpm

SHA-256: f2f186018a45596ddacada72adc65452f7c8fcd0952a4927ad48eb3e575c8659

vim-common-debuginfo-8.0.1763-16.el8_5.12.ppc64le.rpm

SHA-256: 390a46af3518345b55c7851116af49da67ccd789633c536697139b40e0b382a5

vim-common-debuginfo-8.0.1763-16.el8_5.12.ppc64le.rpm

SHA-256: 390a46af3518345b55c7851116af49da67ccd789633c536697139b40e0b382a5

vim-debuginfo-8.0.1763-16.el8_5.12.ppc64le.rpm

SHA-256: 2ccaa97e873db6baf8589809cfc4300e928887708a6409b02271da4dea3892e1

vim-debuginfo-8.0.1763-16.el8_5.12.ppc64le.rpm

SHA-256: 2ccaa97e873db6baf8589809cfc4300e928887708a6409b02271da4dea3892e1

vim-debugsource-8.0.1763-16.el8_5.12.ppc64le.rpm

SHA-256: 635381d030717de6a206a5442b0431ad25644006281b8ca9b14a1cffd17a75fd

vim-debugsource-8.0.1763-16.el8_5.12.ppc64le.rpm

SHA-256: 635381d030717de6a206a5442b0431ad25644006281b8ca9b14a1cffd17a75fd

vim-enhanced-8.0.1763-16.el8_5.12.ppc64le.rpm

SHA-256: c633174560d1073b177cc48b48fea86701ca025fdaa2e1c9b65d27e90c020ce2

vim-enhanced-debuginfo-8.0.1763-16.el8_5.12.ppc64le.rpm

SHA-256: 9ccac6e2e1b6361b09f0511d0fde75a448c77ad59dfde8ab72c80816ccdbafb1

vim-enhanced-debuginfo-8.0.1763-16.el8_5.12.ppc64le.rpm

SHA-256: 9ccac6e2e1b6361b09f0511d0fde75a448c77ad59dfde8ab72c80816ccdbafb1

vim-filesystem-8.0.1763-16.el8_5.12.noarch.rpm

SHA-256: a0595728c732ee76f74b3ec889b20408dc7acc3c5a821ae05b3a51baef49fbab

vim-minimal-8.0.1763-16.el8_5.12.ppc64le.rpm

SHA-256: 08ae4e2149692bacef249220439b4a21f4fed3bf2bc4f1b2785608400e056e6c

vim-minimal-debuginfo-8.0.1763-16.el8_5.12.ppc64le.rpm

SHA-256: bd1e6cf4b5671bdcbad77a814ecbdf8e75120c71be39a361e4d6457820893d8a

vim-minimal-debuginfo-8.0.1763-16.el8_5.12.ppc64le.rpm

SHA-256: bd1e6cf4b5671bdcbad77a814ecbdf8e75120c71be39a361e4d6457820893d8a

Red Hat Virtualization Host 4 for RHEL 8

SRPM

vim-8.0.1763-16.el8_5.12.src.rpm

SHA-256: 605196921fc17dd1d1c32e8689ee41c5ae5b1d72a5282f5e7b24ad00ea5dfe1e

x86_64

vim-X11-debuginfo-8.0.1763-16.el8_5.12.x86_64.rpm

SHA-256: 5863b58780fa0a62f8a60e06437b24f75f2d99a1868a5c26ab8bc5ffa00e3def

vim-common-debuginfo-8.0.1763-16.el8_5.12.x86_64.rpm

SHA-256: 20a5302a8e153d233093b9b54b1de0c52974f24da2e94dcf07b16ecb1948b0be

vim-debuginfo-8.0.1763-16.el8_5.12.x86_64.rpm

SHA-256: 245a339a506309e86d512f91e650c17a6e0f362012b1c77a7826344dc4c4c939

vim-debugsource-8.0.1763-16.el8_5.12.x86_64.rpm

SHA-256: 1ecd31d1adda0886e9e098f7dcfe940e678019226a7f72b0d096f123864ab713

vim-enhanced-debuginfo-8.0.1763-16.el8_5.12.x86_64.rpm

SHA-256: 9a587f671381cc2e7c2b0cd29f575c7686a39895c63396119f13272a43e270a3

vim-minimal-8.0.1763-16.el8_5.12.x86_64.rpm

SHA-256: bfcb6bed5fd77595879c25579502a2689733ce88ce22389d6228a09f39c8ad8e

vim-minimal-debuginfo-8.0.1763-16.el8_5.12.x86_64.rpm

SHA-256: 0022e9097bc826a25728f1d62a8241082b28966df5768aaccb8336bb6f8dcae8

Red Hat Enterprise Linux for x86_64 8

SRPM

vim-8.0.1763-16.el8_5.12.src.rpm

SHA-256: 605196921fc17dd1d1c32e8689ee41c5ae5b1d72a5282f5e7b24ad00ea5dfe1e

x86_64

vim-X11-8.0.1763-16.el8_5.12.x86_64.rpm

SHA-256: 64075b7e37d92f10f133f2a0cde878cc78d743aa5176f3edfed89575b14a842b

vim-X11-debuginfo-8.0.1763-16.el8_5.12.x86_64.rpm

SHA-256: 5863b58780fa0a62f8a60e06437b24f75f2d99a1868a5c26ab8bc5ffa00e3def

vim-X11-debuginfo-8.0.1763-16.el8_5.12.x86_64.rpm

SHA-256: 5863b58780fa0a62f8a60e06437b24f75f2d99a1868a5c26ab8bc5ffa00e3def

vim-common-8.0.1763-16.el8_5.12.x86_64.rpm

SHA-256: 334b1a4f9563522f7fe02988e338cdfb2b656af7c3618a2adea9cd7ef5393c57

vim-common-debuginfo-8.0.1763-16.el8_5.12.x86_64.rpm

SHA-256: 20a5302a8e153d233093b9b54b1de0c52974f24da2e94dcf07b16ecb1948b0be

vim-common-debuginfo-8.0.1763-16.el8_5.12.x86_64.rpm

SHA-256: 20a5302a8e153d233093b9b54b1de0c52974f24da2e94dcf07b16ecb1948b0be

vim-debuginfo-8.0.1763-16.el8_5.12.x86_64.rpm

SHA-256: 245a339a506309e86d512f91e650c17a6e0f362012b1c77a7826344dc4c4c939

vim-debuginfo-8.0.1763-16.el8_5.12.x86_64.rpm

SHA-256: 245a339a506309e86d512f91e650c17a6e0f362012b1c77a7826344dc4c4c939

vim-debugsource-8.0.1763-16.el8_5.12.x86_64.rpm

SHA-256: 1ecd31d1adda0886e9e098f7dcfe940e678019226a7f72b0d096f123864ab713

vim-debugsource-8.0.1763-16.el8_5.12.x86_64.rpm

SHA-256: 1ecd31d1adda0886e9e098f7dcfe940e678019226a7f72b0d096f123864ab713

vim-enhanced-8.0.1763-16.el8_5.12.x86_64.rpm

SHA-256: fbda817775f8cdb84a1c498ecd629f0511651e4a7a0e0d97629949cb6f6a59ce

vim-enhanced-debuginfo-8.0.1763-16.el8_5.12.x86_64.rpm

SHA-256: 9a587f671381cc2e7c2b0cd29f575c7686a39895c63396119f13272a43e270a3

vim-enhanced-debuginfo-8.0.1763-16.el8_5.12.x86_64.rpm

SHA-256: 9a587f671381cc2e7c2b0cd29f575c7686a39895c63396119f13272a43e270a3

vim-filesystem-8.0.1763-16.el8_5.12.noarch.rpm

SHA-256: a0595728c732ee76f74b3ec889b20408dc7acc3c5a821ae05b3a51baef49fbab

vim-minimal-8.0.1763-16.el8_5.12.x86_64.rpm

SHA-256: bfcb6bed5fd77595879c25579502a2689733ce88ce22389d6228a09f39c8ad8e

vim-minimal-debuginfo-8.0.1763-16.el8_5.12.x86_64.rpm

SHA-256: 0022e9097bc826a25728f1d62a8241082b28966df5768aaccb8336bb6f8dcae8

vim-minimal-debuginfo-8.0.1763-16.el8_5.12.x86_64.rpm

SHA-256: 0022e9097bc826a25728f1d62a8241082b28966df5768aaccb8336bb6f8dcae8

Red Hat Enterprise Linux for ARM 64 8

SRPM

vim-8.0.1763-16.el8_5.12.src.rpm

SHA-256: 605196921fc17dd1d1c32e8689ee41c5ae5b1d72a5282f5e7b24ad00ea5dfe1e

aarch64

vim-X11-8.0.1763-16.el8_5.12.aarch64.rpm

SHA-256: dc41c5d5ca30e081788db5fc73970c50b7e14b107f1cc5910361ad985a0fe5c7

vim-X11-debuginfo-8.0.1763-16.el8_5.12.aarch64.rpm

SHA-256: 47251372c6414114cd294068994cec8d0efd753277985dd578022e3bba2d4b10

vim-X11-debuginfo-8.0.1763-16.el8_5.12.aarch64.rpm

SHA-256: 47251372c6414114cd294068994cec8d0efd753277985dd578022e3bba2d4b10

vim-common-8.0.1763-16.el8_5.12.aarch64.rpm

SHA-256: e07cb7312e6b9bf5684d79453eb62d155b4f7d8ceef00483975c9b89f2ccc42f

vim-common-debuginfo-8.0.1763-16.el8_5.12.aarch64.rpm

SHA-256: 7fa1207c869ff7dcc6f21ccb04153bfd8a37246c9ed310b2fcddb98a9f13ad46

vim-common-debuginfo-8.0.1763-16.el8_5.12.aarch64.rpm

SHA-256: 7fa1207c869ff7dcc6f21ccb04153bfd8a37246c9ed310b2fcddb98a9f13ad46

vim-debuginfo-8.0.1763-16.el8_5.12.aarch64.rpm

SHA-256: cfde219ef5f45870e3f1a8be5325357bb91a57875f26ea5a8ae78ade87d15c9e

vim-debuginfo-8.0.1763-16.el8_5.12.aarch64.rpm

SHA-256: cfde219ef5f45870e3f1a8be5325357bb91a57875f26ea5a8ae78ade87d15c9e

vim-debugsource-8.0.1763-16.el8_5.12.aarch64.rpm

SHA-256: 993e893f6ebd094aa69ca2921b3082c90799a709810dc81bfa8055d6da7b0699

vim-debugsource-8.0.1763-16.el8_5.12.aarch64.rpm

SHA-256: 993e893f6ebd094aa69ca2921b3082c90799a709810dc81bfa8055d6da7b0699

vim-enhanced-8.0.1763-16.el8_5.12.aarch64.rpm

SHA-256: ea49bdebccba67a925925c1394b464536a2d526ab9c81f3e96fe15fe63a78e11

vim-enhanced-debuginfo-8.0.1763-16.el8_5.12.aarch64.rpm

SHA-256: d3ff1fda1c37b9f03eb0876a043024d394926d621e68c514bee690b621a6741d

vim-enhanced-debuginfo-8.0.1763-16.el8_5.12.aarch64.rpm

SHA-256: d3ff1fda1c37b9f03eb0876a043024d394926d621e68c514bee690b621a6741d

vim-filesystem-8.0.1763-16.el8_5.12.noarch.rpm

SHA-256: a0595728c732ee76f74b3ec889b20408dc7acc3c5a821ae05b3a51baef49fbab

vim-minimal-8.0.1763-16.el8_5.12.aarch64.rpm

SHA-256: 78b9ea80dd95373467cc92f4a48740697cb9401f8429e5b101d10e55bceca5ad

vim-minimal-debuginfo-8.0.1763-16.el8_5.12.aarch64.rpm

SHA-256: 7597f8979f28712cf307b4227d68964e8d060349f103ee904becc7cf58849c8a

vim-minimal-debuginfo-8.0.1763-16.el8_5.12.aarch64.rpm

SHA-256: 7597f8979f28712cf307b4227d68964e8d060349f103ee904becc7cf58849c8a

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Red Hat Security Data: Latest News

RHSA-2023:5627: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

2 years ago

Red Hat Security Data

RHSA-2023:5628: Red Hat Security Advisory: kernel security and bug fix update

2 years ago

Red Hat Security Data

RHSA-2023:5622: Red Hat Security Advisory: kernel security and bug fix update

2 years ago

Red Hat Security Data

RHSA-2023:5615: Red Hat Security Advisory: libssh2 security update

2 years ago

Red Hat Security Data

RHSA-2023:5616: Red Hat Security Advisory: python-reportlab security update

2 years ago

Red Hat Security Data