It was discovered that vim incorrectly handled parsing of filenames in its search functionality. If a user was tricked into opening a specially crafted file, an attacker could crash the application, leading to a denial of service. This issue only affected Ubuntu 21.10. (CVE-2021-3973)
It was discovered that vim incorrectly handled memory when opening and searching the contents of certain files. If a user was tricked into opening a specially crafted file, an attacker could crash the application, leading to a denial of service, or possibly achieve code execution with user privileges. This issue only affected Ubuntu 20.04 LTS and Ubuntu 21.10. (CVE-2021-3974)
It was discovered that vim incorrectly handled memory when opening and editing certain files. If a user was tricked into opening a specially crafted file, an attacker could crash the application, leading to a denial of service, or possibly achieve code execution with user privileges. (CVE-2021-3984)
It was discovered that vim incorrectly handled memory when opening and editing certain files. If a user was tricked into opening a specially crafted file, an attacker could crash the application, leading to a denial of service, or possibly achieve code execution with user privileges. (CVE-2021-4019)
It was discovered that vim incorrectly handled memory when opening and editing certain files. If a user was tricked into opening a specially crafted file, an attacker could crash the application, leading to a denial of service, or possibly achieve code execution with user privileges.(CVE-2021-4069)
{ "binaries": [ { "binary_name": "vim", "binary_version": "2:8.0.1453-1ubuntu1.8" }, { "binary_name": "vim-athena", "binary_version": "2:8.0.1453-1ubuntu1.8" }, { "binary_name": "vim-common", "binary_version": "2:8.0.1453-1ubuntu1.8" }, { "binary_name": "vim-gnome", "binary_version": "2:8.0.1453-1ubuntu1.8" }, { "binary_name": "vim-gtk", "binary_version": "2:8.0.1453-1ubuntu1.8" }, { "binary_name": "vim-gtk3", "binary_version": "2:8.0.1453-1ubuntu1.8" }, { "binary_name": "vim-gui-common", "binary_version": "2:8.0.1453-1ubuntu1.8" }, { "binary_name": "vim-nox", "binary_version": "2:8.0.1453-1ubuntu1.8" }, { "binary_name": "vim-runtime", "binary_version": "2:8.0.1453-1ubuntu1.8" }, { "binary_name": "vim-tiny", "binary_version": "2:8.0.1453-1ubuntu1.8" }, { "binary_name": "xxd", "binary_version": "2:8.0.1453-1ubuntu1.8" } ], "availability": "No subscription required" }
{ "ecosystem": "Ubuntu:18.04:LTS", "cves": [ { "id": "CVE-2021-3973", "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "type": "CVSS_V3", "score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:H" }, { "type": "Ubuntu", "score": "low" } ] }, { "id": "CVE-2021-3974", "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "type": "CVSS_V3", "score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:H" }, { "type": "Ubuntu", "score": "low" } ] }, { "id": "CVE-2021-3984", "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "type": "CVSS_V3", "score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:H" }, { "type": "Ubuntu", "score": "medium" } ] }, { "id": "CVE-2021-4019", "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "type": "CVSS_V3", "score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H" }, { "type": "Ubuntu", "score": "medium" } ] }, { "id": "CVE-2021-4069", "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "type": "CVSS_V3", "score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H" }, { "type": "Ubuntu", "score": "medium" } ] } ] }
{ "binaries": [ { "binary_name": "vim", "binary_version": "2:8.1.2269-1ubuntu5.6" }, { "binary_name": "vim-athena", "binary_version": "2:8.1.2269-1ubuntu5.6" }, { "binary_name": "vim-common", "binary_version": "2:8.1.2269-1ubuntu5.6" }, { "binary_name": "vim-gtk", "binary_version": "2:8.1.2269-1ubuntu5.6" }, { "binary_name": "vim-gtk3", "binary_version": "2:8.1.2269-1ubuntu5.6" }, { "binary_name": "vim-gui-common", "binary_version": "2:8.1.2269-1ubuntu5.6" }, { "binary_name": "vim-nox", "binary_version": "2:8.1.2269-1ubuntu5.6" }, { "binary_name": "vim-runtime", "binary_version": "2:8.1.2269-1ubuntu5.6" }, { "binary_name": "vim-tiny", "binary_version": "2:8.1.2269-1ubuntu5.6" }, { "binary_name": "xxd", "binary_version": "2:8.1.2269-1ubuntu5.6" } ], "availability": "No subscription required" }
{ "ecosystem": "Ubuntu:20.04:LTS", "cves": [ { "id": "CVE-2021-3973", "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "type": "CVSS_V3", "score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:H" }, { "type": "Ubuntu", "score": "low" } ] }, { "id": "CVE-2021-3974", "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "type": "CVSS_V3", "score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:H" }, { "type": "Ubuntu", "score": "low" } ] }, { "id": "CVE-2021-3984", "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "type": "CVSS_V3", "score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:H" }, { "type": "Ubuntu", "score": "medium" } ] }, { "id": "CVE-2021-4019", "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "type": "CVSS_V3", "score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H" }, { "type": "Ubuntu", "score": "medium" } ] }, { "id": "CVE-2021-4069", "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "type": "CVSS_V3", "score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H" }, { "type": "Ubuntu", "score": "medium" } ] } ] }