CVE-2023-48234
- Source
- https://cve.org/CVERecord?id=CVE-2023-48234
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-48234.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2023-48234
- Aliases
-
- GHSA-59gw-c949-6phq
- Downstream
- Related
- Published
- 2023-11-16T22:52:50.866Z
- Modified
- 2026-05-14T04:02:55.416919449Z
- Severity
-
- 2.8 (Low) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L CVSS Calculator
- Summary
- overflow in nv_z_get_count in vim
- Details
-
Vim is an open source command line text editor. When getting the count for a normal mode z command, it may overflow for large counts given. Impact is low, user interaction is required and a crash may not even happen in all situations. This issue has been addressed in commit
58f9befca1which has been included in release version 9.0.2109. Users are advised to upgrade. There are no known workarounds for this vulnerability. - Database specific
{ "cna_assigner": "GitHub_M", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/48xxx/CVE-2023-48234.json", "cwe_ids": [ "CWE-190" ] }- References
-
- http://www.openwall.com/lists/oss-security/2023/11/16/1
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4UJAK2W5S7G75ETDAEM3BDUCVSXCEGRD/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/M3VQF7CL3V6FGSEW37WNDFBRRILR65AK/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VNRNYLWXZOGTYWE5HMFNQ5FVE3HBUHF6/
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/48xxx/CVE-2023-48234.json
- https://github.com/vim/vim/security/advisories/GHSA-59gw-c949-6phq
- https://nvd.nist.gov/vuln/detail/CVE-2023-48234
- https://security.netapp.com/advisory/ntap-20231227-0004/
- https://github.com/vim/vim/commit/58f9befca1fa172068effad7f2ea5a9d6a7b0cca