CLSA-2022-1657182572
See a problem?- Import Source
- https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos6els/CLSA-2022-1657182572.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CLSA-2022-1657182572
- Upstream
- Published
- 2022-07-07T08:29:32Z
- Modified
- 2026-05-27T11:33:16.293742469Z
- Summary
- Fixed CVEs in vim: CVE-2022-2124, CVE-2022-2129, CVE-2022-2125, CVE-2022-2126, CVE-2022-1720
- Details
-
- CVE-2022-2125: add checking for NUL to avoid running over the end of line
- CVE-2022-1720: do not include the NUL in the length to avoid reading past end of line with "gf" in Visual block mode
- CVE-2022-2124: add checking for NUL to avoid running over the end of line
- CVE-2022-2129: disallow switching buffers in a substitute expression to avoid overruning destination buffer
- CVE-2022-2126: do not decrement the index when it is zero
- References
Affected packages
TuxCare:CentOS:6 / vim-X11
Package
- Name
- vim-X11
- Purl
- pkg:rpm/tuxcare/vim-X11?distro=centos-6
TuxCare:CentOS:6 / vim-common
Package
- Name
- vim-common
- Purl
- pkg:rpm/tuxcare/vim-common?distro=centos-6
TuxCare:CentOS:6 / vim-enhanced
Package
- Name
- vim-enhanced
- Purl
- pkg:rpm/tuxcare/vim-enhanced?distro=centos-6
TuxCare:CentOS:6 / vim-filesystem
Package
- Name
- vim-filesystem
- Purl
- pkg:rpm/tuxcare/vim-filesystem?distro=centos-6