libvterm through 0+bzr726, as used in Vim and other products, mishandles certain out-of-memory conditions, leading to a denial of service (application crash), related to screen.c, state.c, and vterm.c.
{ "vanir_signatures": [ { "digest": { "function_hash": "38223267923767007580328452680634540675", "length": 1519.0 }, "deprecated": false, "signature_version": "v1", "signature_type": "Function", "source": "https://github.com/vim/vim/commit/cd929f7ba8cc5b6d6dcf35c8b34124e969fed6b8", "id": "CVE-2018-20786-28e1b1a3", "target": { "file": "src/terminal.c", "function": "create_pty_only" } }, { "digest": { "function_hash": "300742160604892606200368640558600439385", "length": 324.0 }, "deprecated": false, "signature_version": "v1", "signature_type": "Function", "source": "https://github.com/vim/vim/commit/cd929f7ba8cc5b6d6dcf35c8b34124e969fed6b8", "id": "CVE-2018-20786-2f9373aa", "target": { "file": "src/terminal.c", "function": "create_pty_only" } }, { "digest": { "function_hash": "48595985977489257895081354830690552253", "length": 789.0 }, "deprecated": false, "signature_version": "v1", "signature_type": "Function", "source": "https://github.com/vim/vim/commit/cd929f7ba8cc5b6d6dcf35c8b34124e969fed6b8", "id": "CVE-2018-20786-35a35370", "target": { "file": "src/terminal.c", "function": "create_vterm" } }, { "digest": { "line_hashes": [ "41872221473654435800995993038928584535", "258003331293592470943725283316104428624", "295225846057966614568365797853103096504", "284127062535131469328284645077469356713", "238535277799504561483629794097825610023", "159998901348310238132894953391403696925", "53269045584991798087552063416116240742", "240439344569299344972611811608558500198", "16725916377161488894265181748915771139", "77577335977247327375897339610804016814", "283840970929989893497144922246244776179", "297250320789575067021858813674100230621", "64383759730156519211076869120128772229", "127251762270226408669447691848527756268", "91417442660795728497523574760457461503", "78727786979381916651257227383283544770", "210043072534538036053794735491871579696", "262105375495189850930246222714396979069", "287282978609924993813436275025506196512", "113057622103249396351510466040562569174", "215481019260776804456897750717688892727", "3100626774255787669483382942735596197", "267605433058554407637925880956625752268", "139659094143767520994603195861348013945", "300293648607338712390679403870620747108", "169076169987108630156657762747897021481", "122019897749317922306723842710742882300", "48590507444156954552839474966044823633", "131114086932423037110014964277794442232", "192151018188791071122768008862680696445", "98450834772328963591555941028367853517", "214414152742256122300817404310008878657", "26652847884619038888358612325022302446" ], "threshold": 0.9 }, "deprecated": false, "signature_version": "v1", "signature_type": "Line", "source": "https://github.com/vim/vim/commit/cd929f7ba8cc5b6d6dcf35c8b34124e969fed6b8", "id": "CVE-2018-20786-4d8d3451", "target": { "file": "src/libvterm/src/termscreen.c" } }, { "digest": { "function_hash": "203828999913968014943046761821684574027", "length": 404.0 }, "deprecated": false, "signature_version": "v1", "signature_type": "Function", "source": "https://github.com/vim/vim/commit/cd929f7ba8cc5b6d6dcf35c8b34124e969fed6b8", "id": "CVE-2018-20786-5140469d", "target": { "file": "src/libvterm/src/state.c", "function": "vterm_state_new" } }, { "digest": { "function_hash": "39469633833719243153127457520688196229", "length": 715.0 }, "deprecated": false, "signature_version": "v1", "signature_type": "Function", "source": "https://github.com/vim/vim/commit/cd929f7ba8cc5b6d6dcf35c8b34124e969fed6b8", "id": "CVE-2018-20786-70a3c62b", "target": { "file": "src/libvterm/src/termscreen.c", "function": "screen_new" } }, { "digest": { "function_hash": "264969858579434093800526611114491942159", "length": 253.0 }, "deprecated": false, "signature_version": "v1", "signature_type": "Function", "source": "https://github.com/vim/vim/commit/cd929f7ba8cc5b6d6dcf35c8b34124e969fed6b8", "id": "CVE-2018-20786-77d4fd34", "target": { "file": "src/libvterm/src/termscreen.c", "function": "vterm_screen_free" } }, { "digest": { "line_hashes": [ "143065040232919050882852285735651397573", "305780348417924870801787665485092020653", "216217075005713023039794442874948865887", "60744028366376663165024393508342456365", "186530520335026210914943600810655743289", "236877379249847820223198138175770744885", "322805970635994395736853905818792820226", "42036327113130871239248211263336208254", "26783837154165731116484766279331383248", "326444255597988043640376770487064879237", "94549034450617237927448058167127107369", "252385840995375400827548217145657021475", "228315774518492922962705657633553248890", "125587251606406585314963982368727446059", "87514588627089496164252487450803866152", "8691180732190630634313530870362799930", "154822109450266837391759007620763860324" ], "threshold": 0.9 }, "deprecated": false, "signature_version": "v1", "signature_type": "Line", "source": "https://github.com/vim/vim/commit/cd929f7ba8cc5b6d6dcf35c8b34124e969fed6b8", "id": "CVE-2018-20786-7cf7e7f0", "target": { "file": "src/libvterm/src/vterm.c" } }, { "digest": { "line_hashes": [ "146200493773228420153804765641940418619", "111445960612375428686739007116693888866", "151068244985043473137680944896543006298", "176114151221685725989023075429424647808" ], "threshold": 0.9 }, "deprecated": false, "signature_version": "v1", "signature_type": "Line", "source": "https://github.com/vim/vim/commit/cd929f7ba8cc5b6d6dcf35c8b34124e969fed6b8", "id": "CVE-2018-20786-7e9ed499", "target": { "file": "src/version.c" } }, { "digest": { "line_hashes": [ "318921724031224762145773393529226596162", "115923902276569364238849392838967697978", "97505534390571713465352032894611713195", "239406504689855884754018748491598235802", "24847781916860077661652297360262220823", "335738883585583061583915463023002956899", "243741421816521238570192205977260990709", "170327944960587194697574968056464518374", "49952047541497750958516803668963103168", "185057758020648100081047294371806055476", "253735177330686328211043169172535431317", "216418220297439897224038290114651405269", "120791796653760207384448116024801966543", "137008691148710944573944036569063267466", "294419249532663630104122194451342837958", "160494130603735092390361917759057884741", "329417151004351078141065349053433059879", "151803493526258323970294383160693681086", "177074964778501822483342168587225304041", "263864625956090631470042142097947702374", "44777130565361476174307871788581363612", "333321223070281054992234650309902038763", "332158173027128549471559415493097502258", "299425203086504158495413099006245835065", "45906186461720409768560398490427420206", "3540041643870777658257075189681901344", "39887371107039010130514082368581692399", "314443208020591231712270608622000091233", "189103601691379221161994238063867770449", "128607966932967685637083094733416879864", "61708618388383385936818048506413859291", "260825523562297384494843675111382669819", "320851074395317177377876127121613380217", "33022092168357232843183585107433588860", "39887371107039010130514082368581692399", "235711172010139296656684988963544860208", "229432808638184681464729939140038936418", "137596224198082859796255871628879907748", "153625706694790511094144578485014504138" ], "threshold": 0.9 }, "deprecated": false, "signature_version": "v1", "signature_type": "Line", "source": "https://github.com/vim/vim/commit/cd929f7ba8cc5b6d6dcf35c8b34124e969fed6b8", "id": "CVE-2018-20786-80f31797", "target": { "file": "src/terminal.c" } }, { "digest": { "function_hash": "270955259161747050664014298921418891428", "length": 729.0 }, "deprecated": false, "signature_version": "v1", "signature_type": "Function", "source": "https://github.com/vim/vim/commit/cd929f7ba8cc5b6d6dcf35c8b34124e969fed6b8", "id": "CVE-2018-20786-87bfec3e", "target": { "file": "src/libvterm/src/state.c", "function": "vterm_obtain_state" } }, { "digest": { "function_hash": "49336462971133216233902517781667973208", "length": 628.0 }, "deprecated": false, "signature_version": "v1", "signature_type": "Function", "source": "https://github.com/vim/vim/commit/cd929f7ba8cc5b6d6dcf35c8b34124e969fed6b8", "id": "CVE-2018-20786-b02680a7", "target": { "file": "src/libvterm/src/vterm.c", "function": "vterm_new_with_allocator" } }, { "digest": { "function_hash": "86302133799879548627188413283268418265", "length": 2211.0 }, "deprecated": false, "signature_version": "v1", "signature_type": "Function", "source": "https://github.com/vim/vim/commit/cd929f7ba8cc5b6d6dcf35c8b34124e969fed6b8", "id": "CVE-2018-20786-bfdb1650", "target": { "file": "src/libvterm/src/termscreen.c", "function": "resize" } }, { "digest": { "line_hashes": [ "311347239601283218573887660263476920364", "326939281703450041697161605559515605360", "62376664553500645661564737762185494857", "24998721842261115033298526937741303558", "106436980315835739803301612865629254640", "227129191278394776170816676498139003509", "325238590359552725064441336049015181856", "283526469410143904825322996992750443689", "249030651208890177138487689515060970484", "36393816477541933287505878820442891419" ], "threshold": 0.9 }, "deprecated": false, "signature_version": "v1", "signature_type": "Line", "source": "https://github.com/vim/vim/commit/cd929f7ba8cc5b6d6dcf35c8b34124e969fed6b8", "id": "CVE-2018-20786-c053a179", "target": { "file": "src/libvterm/src/state.c" } }, { "digest": { "function_hash": "165830256253564218102327505047822349526", "length": 537.0 }, "deprecated": false, "signature_version": "v1", "signature_type": "Function", "source": "https://github.com/vim/vim/commit/cd929f7ba8cc5b6d6dcf35c8b34124e969fed6b8", "id": "CVE-2018-20786-c12f2a42", "target": { "file": "src/libvterm/src/termscreen.c", "function": "realloc_buffer" } }, { "digest": { "function_hash": "209018947757054672678357665643758743074", "length": 118.0 }, "deprecated": false, "signature_version": "v1", "signature_type": "Function", "source": "https://github.com/vim/vim/commit/cd929f7ba8cc5b6d6dcf35c8b34124e969fed6b8", "id": "CVE-2018-20786-f942075c", "target": { "file": "src/libvterm/src/vterm.c", "function": "vterm_allocator_free" } } ] }