Action not permitted
Modal body text goes here.
Modal Title
Modal Body
usn-5458-1
Vulnerability from osv_ubuntu
It was discovered that Vim was incorrectly handling virtual column position operations, which could result in an out-of-bounds read. An attacker could possibly use this issue to expose sensitive information. (CVE-2021-4193)
It was discovered that Vim was not properly performing bounds checks when updating windows present on a screen, which could result in a heap buffer overflow. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. (CVE-2022-0213)
It was discovered that Vim was incorrectly handling window exchanging operations when in Visual mode, which could result in an out-of-bounds read. An attacker could possibly use this issue to expose sensitive information. (CVE-2022-0319)
It was discovered that Vim was incorrectly handling recursion when parsing conditional expressions. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. (CVE-2022-0351)
It was discovered that Vim was not properly handling memory allocation when processing data in Ex mode, which could result in a heap buffer overflow. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. (CVE-2022-0359)
It was discovered that Vim was not properly performing bounds checks when executing line operations in Visual mode, which could result in a heap buffer overflow. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. (CVE-2022-0361, CVE-2022-0368)
It was discovered that Vim was not properly handling loop conditions when looking for spell suggestions, which could result in a stack buffer overflow. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. (CVE-2022-0408)
It was discovered that Vim was incorrectly handling memory access when executing buffer operations, which could result in the usage of freed memory. An attacker could possibly use this issue to execute arbitrary code. (CVE-2022-0443)
{
"affected": [
{
"database_specific": {
"cves_map": {
"cves": [
{
"id": "CVE-2021-4193",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2022-0213",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2022-0319",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2022-0351",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2022-0359",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2022-0361",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2022-0368",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2022-0408",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2022-0443",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
]
}
],
"ecosystem": "Ubuntu:Pro:16.04:LTS"
}
},
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-athena",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-athena-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-common",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gnome",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gnome-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk3",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk3-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-nox",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-nox-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:16.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:7.4.1689-3ubuntu1.5+esm5?arch=source\u0026distro=esm-infra/xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:7.4.1689-3ubuntu1.5+esm5"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:7.4.712-2ubuntu4",
"2:7.4.826-1ubuntu1",
"2:7.4.826-1ubuntu2",
"2:7.4.826-1ubuntu3",
"2:7.4.963-1ubuntu1",
"2:7.4.963-1ubuntu4",
"2:7.4.963-1ubuntu5",
"2:7.4.1689-3ubuntu1",
"2:7.4.1689-3ubuntu1.1",
"2:7.4.1689-3ubuntu1.2",
"2:7.4.1689-3ubuntu1.3",
"2:7.4.1689-3ubuntu1.4",
"2:7.4.1689-3ubuntu1.5",
"2:7.4.1689-3ubuntu1.5+esm2",
"2:7.4.1689-3ubuntu1.5+esm3",
"2:7.4.1689-3ubuntu1.5+esm4"
]
}
],
"aliases": [],
"details": "It was discovered that Vim was incorrectly handling virtual column\nposition operations, which could result in an out-of-bounds read. An\nattacker could possibly use this issue to expose sensitive\ninformation. (CVE-2021-4193)\n\nIt was discovered that Vim was not properly performing bounds checks\nwhen updating windows present on a screen, which could result in a\nheap buffer overflow. An attacker could possibly use this issue to\ncause a denial of service or execute arbitrary code. (CVE-2022-0213)\n\nIt was discovered that Vim was incorrectly handling window\nexchanging operations when in Visual mode, which could result in an\nout-of-bounds read. An attacker could possibly use this issue to\nexpose sensitive information. (CVE-2022-0319)\n\nIt was discovered that Vim was incorrectly handling recursion when\nparsing conditional expressions. An attacker could possibly use this\nissue to cause a denial of service or execute arbitrary code.\n(CVE-2022-0351)\n\nIt was discovered that Vim was not properly handling memory\nallocation when processing data in Ex mode, which could result in a\nheap buffer overflow. An attacker could possibly use this issue to\ncause a denial of service or execute arbitrary code.\n(CVE-2022-0359)\n\nIt was discovered that Vim was not properly performing bounds checks\nwhen executing line operations in Visual mode, which could result in\na heap buffer overflow. An attacker could possibly use this issue to\ncause a denial of service or execute arbitrary code.\n(CVE-2022-0361, CVE-2022-0368)\n\nIt was discovered that Vim was not properly handling loop conditions\nwhen looking for spell suggestions, which could result in a stack\nbuffer overflow. An attacker could possibly use this issue to cause\na denial of service or execute arbitrary code. (CVE-2022-0408)\n\nIt was discovered that Vim was incorrectly handling memory access\nwhen executing buffer operations, which could result in the usage of\nfreed memory. An attacker could possibly use this issue to execute\narbitrary code. (CVE-2022-0443)\n",
"id": "USN-5458-1",
"modified": "2026-06-25T10:46:06Z",
"published": "2022-06-02T12:21:05Z",
"references": [
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-5458-1"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2021-4193"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2022-0213"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2022-0319"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2022-0351"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2022-0359"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2022-0361"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2022-0368"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2022-0408"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2022-0443"
}
],
"related": [],
"schema_version": "1.7.0",
"summary": "vim vulnerabilities",
"upstream": [
"UBUNTU-CVE-2021-4193",
"UBUNTU-CVE-2022-0213",
"UBUNTU-CVE-2022-0319",
"UBUNTU-CVE-2022-0351",
"UBUNTU-CVE-2022-0359",
"UBUNTU-CVE-2022-0361",
"UBUNTU-CVE-2022-0368",
"UBUNTU-CVE-2022-0408",
"UBUNTU-CVE-2022-0443"
]
}
ubuntu-cve-2021-4193
Vulnerability from osv_ubuntu
vim is vulnerable to Out-of-bounds Read
{
"affected": [
{
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-athena",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-common",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-gnome",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-lesstif",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-nox",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:14.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:7.4.052-1ubuntu3.1+esm9?arch=source\u0026distro=trusty/esm"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:7.4.052-1ubuntu3.1+esm9"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:7.4.000-1ubuntu2",
"2:7.4.052-1ubuntu1",
"2:7.4.052-1ubuntu2",
"2:7.4.052-1ubuntu3",
"2:7.4.052-1ubuntu3.1",
"2:7.4.052-1ubuntu3.1+esm1",
"2:7.4.052-1ubuntu3.1+esm3",
"2:7.4.052-1ubuntu3.1+esm4",
"2:7.4.052-1ubuntu3.1+esm5",
"2:7.4.052-1ubuntu3.1+esm6",
"2:7.4.052-1ubuntu3.1+esm7",
"2:7.4.052-1ubuntu3.1+esm8"
]
},
{
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-athena",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-athena-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-common",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gnome",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gnome-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk3",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk3-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-nox",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-nox-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:16.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:7.4.1689-3ubuntu1.5+esm5?arch=source\u0026distro=esm-infra/xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:7.4.1689-3ubuntu1.5+esm5"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:7.4.712-2ubuntu4",
"2:7.4.826-1ubuntu1",
"2:7.4.826-1ubuntu2",
"2:7.4.826-1ubuntu3",
"2:7.4.963-1ubuntu1",
"2:7.4.963-1ubuntu4",
"2:7.4.963-1ubuntu5",
"2:7.4.1689-3ubuntu1",
"2:7.4.1689-3ubuntu1.1",
"2:7.4.1689-3ubuntu1.2",
"2:7.4.1689-3ubuntu1.3",
"2:7.4.1689-3ubuntu1.4",
"2:7.4.1689-3ubuntu1.5",
"2:7.4.1689-3ubuntu1.5+esm2",
"2:7.4.1689-3ubuntu1.5+esm3",
"2:7.4.1689-3ubuntu1.5+esm4"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-athena",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-common",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-gnome",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-gtk3",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-nox",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "xxd",
"binary_version": "2:8.0.1453-1ubuntu1.13"
}
]
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:8.0.1453-1ubuntu1.13?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:8.0.1453-1ubuntu1.13"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:8.0.0197-4ubuntu5",
"2:8.0.1144-1ubuntu1",
"2:8.0.1401-1ubuntu1",
"2:8.0.1401-1ubuntu2",
"2:8.0.1401-1ubuntu3",
"2:8.0.1453-1ubuntu1",
"2:8.0.1453-1ubuntu1.1",
"2:8.0.1453-1ubuntu1.3",
"2:8.0.1453-1ubuntu1.4",
"2:8.0.1453-1ubuntu1.6",
"2:8.0.1453-1ubuntu1.7",
"2:8.0.1453-1ubuntu1.8",
"2:8.0.1453-1ubuntu1.9",
"2:8.0.1453-1ubuntu1.10",
"2:8.0.1453-1ubuntu1.11",
"2:8.0.1453-1ubuntu1.12"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-athena",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-common",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-gtk3",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-nox",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "xxd",
"binary_version": "2:8.1.2269-1ubuntu5.14"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:8.1.2269-1ubuntu5.14?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:8.1.2269-1ubuntu5.14"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:8.1.0875-5ubuntu2",
"2:8.1.0875-5ubuntu3",
"2:8.1.0875-5ubuntu4",
"2:8.1.2269-1ubuntu1",
"2:8.1.2269-1ubuntu4",
"2:8.1.2269-1ubuntu5",
"2:8.1.2269-1ubuntu5.3",
"2:8.1.2269-1ubuntu5.4",
"2:8.1.2269-1ubuntu5.6",
"2:8.1.2269-1ubuntu5.7",
"2:8.1.2269-1ubuntu5.8",
"2:8.1.2269-1ubuntu5.9",
"2:8.1.2269-1ubuntu5.11",
"2:8.1.2269-1ubuntu5.12",
"2:8.1.2269-1ubuntu5.13"
]
}
],
"aliases": [],
"details": "vim is vulnerable to Out-of-bounds Read",
"id": "UBUNTU-CVE-2021-4193",
"modified": "2025-09-08T16:46:52Z",
"published": "2021-12-31T16:15:00Z",
"references": [
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2021-4193"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-5458-1"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-6026-1"
},
{
"type": "REPORT",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4193"
}
],
"related": [
"USN-5458-1",
"USN-6026-1"
],
"schema_version": "1.7.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
],
"upstream": [
"CVE-2021-4193"
]
}
ubuntu-cve-2022-0213
Vulnerability from osv_ubuntu
vim is vulnerable to Heap-based Buffer Overflow
{
"affected": [
{
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-athena",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-common",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-gnome",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-lesstif",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-nox",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:14.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:7.4.052-1ubuntu3.1+esm9?arch=source\u0026distro=trusty/esm"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:7.4.052-1ubuntu3.1+esm9"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:7.4.000-1ubuntu2",
"2:7.4.052-1ubuntu1",
"2:7.4.052-1ubuntu2",
"2:7.4.052-1ubuntu3",
"2:7.4.052-1ubuntu3.1",
"2:7.4.052-1ubuntu3.1+esm1",
"2:7.4.052-1ubuntu3.1+esm3",
"2:7.4.052-1ubuntu3.1+esm4",
"2:7.4.052-1ubuntu3.1+esm5",
"2:7.4.052-1ubuntu3.1+esm6",
"2:7.4.052-1ubuntu3.1+esm7",
"2:7.4.052-1ubuntu3.1+esm8"
]
},
{
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-athena",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-athena-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-common",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gnome",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gnome-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk3",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk3-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-nox",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-nox-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:16.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:7.4.1689-3ubuntu1.5+esm5?arch=source\u0026distro=esm-infra/xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:7.4.1689-3ubuntu1.5+esm5"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:7.4.712-2ubuntu4",
"2:7.4.826-1ubuntu1",
"2:7.4.826-1ubuntu2",
"2:7.4.826-1ubuntu3",
"2:7.4.963-1ubuntu1",
"2:7.4.963-1ubuntu4",
"2:7.4.963-1ubuntu5",
"2:7.4.1689-3ubuntu1",
"2:7.4.1689-3ubuntu1.1",
"2:7.4.1689-3ubuntu1.2",
"2:7.4.1689-3ubuntu1.3",
"2:7.4.1689-3ubuntu1.4",
"2:7.4.1689-3ubuntu1.5",
"2:7.4.1689-3ubuntu1.5+esm2",
"2:7.4.1689-3ubuntu1.5+esm3",
"2:7.4.1689-3ubuntu1.5+esm4"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-athena",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-common",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-gnome",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-gtk3",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-nox",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "xxd",
"binary_version": "2:8.0.1453-1ubuntu1.13"
}
]
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:8.0.1453-1ubuntu1.13?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:8.0.1453-1ubuntu1.13"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:8.0.0197-4ubuntu5",
"2:8.0.1144-1ubuntu1",
"2:8.0.1401-1ubuntu1",
"2:8.0.1401-1ubuntu2",
"2:8.0.1401-1ubuntu3",
"2:8.0.1453-1ubuntu1",
"2:8.0.1453-1ubuntu1.1",
"2:8.0.1453-1ubuntu1.3",
"2:8.0.1453-1ubuntu1.4",
"2:8.0.1453-1ubuntu1.6",
"2:8.0.1453-1ubuntu1.7",
"2:8.0.1453-1ubuntu1.8",
"2:8.0.1453-1ubuntu1.9",
"2:8.0.1453-1ubuntu1.10",
"2:8.0.1453-1ubuntu1.11",
"2:8.0.1453-1ubuntu1.12"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-athena",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-common",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-gtk3",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-nox",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "xxd",
"binary_version": "2:8.1.2269-1ubuntu5.14"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:8.1.2269-1ubuntu5.14?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:8.1.2269-1ubuntu5.14"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:8.1.0875-5ubuntu2",
"2:8.1.0875-5ubuntu3",
"2:8.1.0875-5ubuntu4",
"2:8.1.2269-1ubuntu1",
"2:8.1.2269-1ubuntu4",
"2:8.1.2269-1ubuntu5",
"2:8.1.2269-1ubuntu5.3",
"2:8.1.2269-1ubuntu5.4",
"2:8.1.2269-1ubuntu5.6",
"2:8.1.2269-1ubuntu5.7",
"2:8.1.2269-1ubuntu5.8",
"2:8.1.2269-1ubuntu5.9",
"2:8.1.2269-1ubuntu5.11",
"2:8.1.2269-1ubuntu5.12",
"2:8.1.2269-1ubuntu5.13"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-athena",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-common",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-gtk3",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-nox",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "xxd",
"binary_version": "2:8.2.3995-1ubuntu2.7"
}
]
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:8.2.3995-1ubuntu2.7?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:8.2.3995-1ubuntu2.7"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:8.2.2434-3ubuntu3",
"2:8.2.2434-3ubuntu4",
"2:8.2.3565-1ubuntu1",
"2:8.2.3565-1ubuntu2",
"2:8.2.3565-1ubuntu3",
"2:8.2.3565-1ubuntu5",
"2:8.2.3995-1ubuntu1",
"2:8.2.3995-1ubuntu2",
"2:8.2.3995-1ubuntu2.1",
"2:8.2.3995-1ubuntu2.3",
"2:8.2.3995-1ubuntu2.4",
"2:8.2.3995-1ubuntu2.5"
]
}
],
"aliases": [],
"details": "vim is vulnerable to Heap-based Buffer Overflow",
"id": "UBUNTU-CVE-2022-0213",
"modified": "2025-09-08T16:49:23Z",
"published": "2022-01-14T13:15:00Z",
"references": [
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2022-0213"
},
{
"type": "REPORT",
"url": "http://www.openwall.com/lists/oss-security/2022/01/15/1"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-5458-1"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-6026-1"
},
{
"type": "REPORT",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0213"
}
],
"related": [
"USN-5458-1",
"USN-6026-1"
],
"schema_version": "1.7.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
],
"upstream": [
"CVE-2022-0213"
]
}
ubuntu-cve-2022-0319
Vulnerability from osv_ubuntu
Out-of-bounds Read in vim/vim prior to 8.2.
| URL | Type | |||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
{
"affected": [
{
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-athena",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-common",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-gnome",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-lesstif",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-nox",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:14.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:7.4.052-1ubuntu3.1+esm9?arch=source\u0026distro=trusty/esm"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:7.4.052-1ubuntu3.1+esm9"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:7.4.000-1ubuntu2",
"2:7.4.052-1ubuntu1",
"2:7.4.052-1ubuntu2",
"2:7.4.052-1ubuntu3",
"2:7.4.052-1ubuntu3.1",
"2:7.4.052-1ubuntu3.1+esm1",
"2:7.4.052-1ubuntu3.1+esm3",
"2:7.4.052-1ubuntu3.1+esm4",
"2:7.4.052-1ubuntu3.1+esm5",
"2:7.4.052-1ubuntu3.1+esm6",
"2:7.4.052-1ubuntu3.1+esm7",
"2:7.4.052-1ubuntu3.1+esm8"
]
},
{
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-athena",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-athena-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-common",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gnome",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gnome-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk3",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk3-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-nox",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-nox-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:16.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:7.4.1689-3ubuntu1.5+esm5?arch=source\u0026distro=esm-infra/xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:7.4.1689-3ubuntu1.5+esm5"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:7.4.712-2ubuntu4",
"2:7.4.826-1ubuntu1",
"2:7.4.826-1ubuntu2",
"2:7.4.826-1ubuntu3",
"2:7.4.963-1ubuntu1",
"2:7.4.963-1ubuntu4",
"2:7.4.963-1ubuntu5",
"2:7.4.1689-3ubuntu1",
"2:7.4.1689-3ubuntu1.1",
"2:7.4.1689-3ubuntu1.2",
"2:7.4.1689-3ubuntu1.3",
"2:7.4.1689-3ubuntu1.4",
"2:7.4.1689-3ubuntu1.5",
"2:7.4.1689-3ubuntu1.5+esm2",
"2:7.4.1689-3ubuntu1.5+esm3",
"2:7.4.1689-3ubuntu1.5+esm4"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-athena",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-common",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-gnome",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-gtk3",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-nox",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "xxd",
"binary_version": "2:8.0.1453-1ubuntu1.13"
}
]
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:8.0.1453-1ubuntu1.13?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:8.0.1453-1ubuntu1.13"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:8.0.0197-4ubuntu5",
"2:8.0.1144-1ubuntu1",
"2:8.0.1401-1ubuntu1",
"2:8.0.1401-1ubuntu2",
"2:8.0.1401-1ubuntu3",
"2:8.0.1453-1ubuntu1",
"2:8.0.1453-1ubuntu1.1",
"2:8.0.1453-1ubuntu1.3",
"2:8.0.1453-1ubuntu1.4",
"2:8.0.1453-1ubuntu1.6",
"2:8.0.1453-1ubuntu1.7",
"2:8.0.1453-1ubuntu1.8",
"2:8.0.1453-1ubuntu1.9",
"2:8.0.1453-1ubuntu1.10",
"2:8.0.1453-1ubuntu1.11",
"2:8.0.1453-1ubuntu1.12"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-athena",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-common",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-gtk3",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-nox",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "xxd",
"binary_version": "2:8.1.2269-1ubuntu5.14"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:8.1.2269-1ubuntu5.14?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:8.1.2269-1ubuntu5.14"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:8.1.0875-5ubuntu2",
"2:8.1.0875-5ubuntu3",
"2:8.1.0875-5ubuntu4",
"2:8.1.2269-1ubuntu1",
"2:8.1.2269-1ubuntu4",
"2:8.1.2269-1ubuntu5",
"2:8.1.2269-1ubuntu5.3",
"2:8.1.2269-1ubuntu5.4",
"2:8.1.2269-1ubuntu5.6",
"2:8.1.2269-1ubuntu5.7",
"2:8.1.2269-1ubuntu5.8",
"2:8.1.2269-1ubuntu5.9",
"2:8.1.2269-1ubuntu5.11",
"2:8.1.2269-1ubuntu5.12",
"2:8.1.2269-1ubuntu5.13"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-athena",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-common",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-gtk3",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-nox",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "xxd",
"binary_version": "2:8.2.3995-1ubuntu2.7"
}
]
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:8.2.3995-1ubuntu2.7?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:8.2.3995-1ubuntu2.7"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:8.2.2434-3ubuntu3",
"2:8.2.2434-3ubuntu4",
"2:8.2.3565-1ubuntu1",
"2:8.2.3565-1ubuntu2",
"2:8.2.3565-1ubuntu3",
"2:8.2.3565-1ubuntu5",
"2:8.2.3995-1ubuntu1",
"2:8.2.3995-1ubuntu2",
"2:8.2.3995-1ubuntu2.1",
"2:8.2.3995-1ubuntu2.3",
"2:8.2.3995-1ubuntu2.4",
"2:8.2.3995-1ubuntu2.5"
]
}
],
"aliases": [],
"details": "Out-of-bounds Read in vim/vim prior to 8.2.",
"id": "UBUNTU-CVE-2022-0319",
"modified": "2025-09-08T16:49:24Z",
"published": "2022-01-21T14:15:00Z",
"references": [
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2022-0319"
},
{
"type": "REPORT",
"url": "https://huntr.dev/bounties/ba622fd2-e6ef-4ad9-95b4-17f87b68755b"
},
{
"type": "REPORT",
"url": "https://github.com/vim/vim/commit/05b27615481e72e3b338bb12990fb3e0c2ecc2a9"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-5458-1"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-6026-1"
},
{
"type": "REPORT",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0319"
}
],
"related": [
"USN-5458-1",
"USN-6026-1"
],
"schema_version": "1.7.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
],
"upstream": [
"CVE-2022-0319"
]
}
ubuntu-cve-2022-0351
Vulnerability from osv_ubuntu
Access of Memory Location Before Start of Buffer in GitHub repository vim/vim prior to 8.2.
| URL | Type | ||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||
{
"affected": [
{
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-athena",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-common",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-gnome",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-lesstif",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-nox",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:14.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:7.4.052-1ubuntu3.1+esm9?arch=source\u0026distro=trusty/esm"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:7.4.052-1ubuntu3.1+esm9"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:7.4.000-1ubuntu2",
"2:7.4.052-1ubuntu1",
"2:7.4.052-1ubuntu2",
"2:7.4.052-1ubuntu3",
"2:7.4.052-1ubuntu3.1",
"2:7.4.052-1ubuntu3.1+esm1",
"2:7.4.052-1ubuntu3.1+esm3",
"2:7.4.052-1ubuntu3.1+esm4",
"2:7.4.052-1ubuntu3.1+esm5",
"2:7.4.052-1ubuntu3.1+esm6",
"2:7.4.052-1ubuntu3.1+esm7",
"2:7.4.052-1ubuntu3.1+esm8"
]
},
{
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-athena",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-athena-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-common",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gnome",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gnome-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk3",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk3-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-nox",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-nox-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:16.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:7.4.1689-3ubuntu1.5+esm5?arch=source\u0026distro=esm-infra/xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:7.4.1689-3ubuntu1.5+esm5"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:7.4.712-2ubuntu4",
"2:7.4.826-1ubuntu1",
"2:7.4.826-1ubuntu2",
"2:7.4.826-1ubuntu3",
"2:7.4.963-1ubuntu1",
"2:7.4.963-1ubuntu4",
"2:7.4.963-1ubuntu5",
"2:7.4.1689-3ubuntu1",
"2:7.4.1689-3ubuntu1.1",
"2:7.4.1689-3ubuntu1.2",
"2:7.4.1689-3ubuntu1.3",
"2:7.4.1689-3ubuntu1.4",
"2:7.4.1689-3ubuntu1.5",
"2:7.4.1689-3ubuntu1.5+esm2",
"2:7.4.1689-3ubuntu1.5+esm3",
"2:7.4.1689-3ubuntu1.5+esm4"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-athena",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-common",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-gnome",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-gtk3",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-nox",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "xxd",
"binary_version": "2:8.0.1453-1ubuntu1.13"
}
]
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:8.0.1453-1ubuntu1.13?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:8.0.1453-1ubuntu1.13"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:8.0.0197-4ubuntu5",
"2:8.0.1144-1ubuntu1",
"2:8.0.1401-1ubuntu1",
"2:8.0.1401-1ubuntu2",
"2:8.0.1401-1ubuntu3",
"2:8.0.1453-1ubuntu1",
"2:8.0.1453-1ubuntu1.1",
"2:8.0.1453-1ubuntu1.3",
"2:8.0.1453-1ubuntu1.4",
"2:8.0.1453-1ubuntu1.6",
"2:8.0.1453-1ubuntu1.7",
"2:8.0.1453-1ubuntu1.8",
"2:8.0.1453-1ubuntu1.9",
"2:8.0.1453-1ubuntu1.10",
"2:8.0.1453-1ubuntu1.11",
"2:8.0.1453-1ubuntu1.12"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-athena",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-common",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-gtk3",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-nox",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "xxd",
"binary_version": "2:8.1.2269-1ubuntu5.14"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:8.1.2269-1ubuntu5.14?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:8.1.2269-1ubuntu5.14"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:8.1.0875-5ubuntu2",
"2:8.1.0875-5ubuntu3",
"2:8.1.0875-5ubuntu4",
"2:8.1.2269-1ubuntu1",
"2:8.1.2269-1ubuntu4",
"2:8.1.2269-1ubuntu5",
"2:8.1.2269-1ubuntu5.3",
"2:8.1.2269-1ubuntu5.4",
"2:8.1.2269-1ubuntu5.6",
"2:8.1.2269-1ubuntu5.7",
"2:8.1.2269-1ubuntu5.8",
"2:8.1.2269-1ubuntu5.9",
"2:8.1.2269-1ubuntu5.11",
"2:8.1.2269-1ubuntu5.12",
"2:8.1.2269-1ubuntu5.13"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-athena",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-common",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-gtk3",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-nox",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "xxd",
"binary_version": "2:8.2.3995-1ubuntu2.7"
}
]
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:8.2.3995-1ubuntu2.7?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:8.2.3995-1ubuntu2.7"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:8.2.2434-3ubuntu3",
"2:8.2.2434-3ubuntu4",
"2:8.2.3565-1ubuntu1",
"2:8.2.3565-1ubuntu2",
"2:8.2.3565-1ubuntu3",
"2:8.2.3565-1ubuntu5",
"2:8.2.3995-1ubuntu1",
"2:8.2.3995-1ubuntu2",
"2:8.2.3995-1ubuntu2.1",
"2:8.2.3995-1ubuntu2.3",
"2:8.2.3995-1ubuntu2.4",
"2:8.2.3995-1ubuntu2.5"
]
}
],
"aliases": [],
"details": "Access of Memory Location Before Start of Buffer in GitHub repository vim/vim prior to 8.2.",
"id": "UBUNTU-CVE-2022-0351",
"modified": "2025-09-08T16:49:24Z",
"published": "2022-01-25T18:15:00Z",
"references": [
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2022-0351"
},
{
"type": "REPORT",
"url": "https://huntr.dev/bounties/8b36db58-b65c-4298-be7f-40b9e37fd161"
},
{
"type": "REPORT",
"url": "https://github.com/vim/vim/commit/fe6fb267e6ee5c5da2f41889e4e0e0ac5bf4b89d"
},
{
"type": "REPORT",
"url": "https://github.com/vim/vim/commit/fe6fb267e6ee5c5da2f41889e4e0e0ac5bf4b89d"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-5458-1"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-6026-1"
},
{
"type": "REPORT",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0351"
}
],
"related": [
"USN-5458-1",
"USN-6026-1"
],
"schema_version": "1.7.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
],
"upstream": [
"CVE-2022-0351"
]
}
ubuntu-cve-2022-0359
Vulnerability from osv_ubuntu
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.
| URL | Type | ||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||
{
"affected": [
{
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-athena",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-common",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-gnome",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-lesstif",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-nox",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:14.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:7.4.052-1ubuntu3.1+esm9?arch=source\u0026distro=trusty/esm"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:7.4.052-1ubuntu3.1+esm9"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:7.4.000-1ubuntu2",
"2:7.4.052-1ubuntu1",
"2:7.4.052-1ubuntu2",
"2:7.4.052-1ubuntu3",
"2:7.4.052-1ubuntu3.1",
"2:7.4.052-1ubuntu3.1+esm1",
"2:7.4.052-1ubuntu3.1+esm3",
"2:7.4.052-1ubuntu3.1+esm4",
"2:7.4.052-1ubuntu3.1+esm5",
"2:7.4.052-1ubuntu3.1+esm6",
"2:7.4.052-1ubuntu3.1+esm7",
"2:7.4.052-1ubuntu3.1+esm8"
]
},
{
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-athena",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-athena-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-common",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gnome",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gnome-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk3",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk3-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-nox",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-nox-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:16.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:7.4.1689-3ubuntu1.5+esm5?arch=source\u0026distro=esm-infra/xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:7.4.1689-3ubuntu1.5+esm5"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:7.4.712-2ubuntu4",
"2:7.4.826-1ubuntu1",
"2:7.4.826-1ubuntu2",
"2:7.4.826-1ubuntu3",
"2:7.4.963-1ubuntu1",
"2:7.4.963-1ubuntu4",
"2:7.4.963-1ubuntu5",
"2:7.4.1689-3ubuntu1",
"2:7.4.1689-3ubuntu1.1",
"2:7.4.1689-3ubuntu1.2",
"2:7.4.1689-3ubuntu1.3",
"2:7.4.1689-3ubuntu1.4",
"2:7.4.1689-3ubuntu1.5",
"2:7.4.1689-3ubuntu1.5+esm2",
"2:7.4.1689-3ubuntu1.5+esm3",
"2:7.4.1689-3ubuntu1.5+esm4"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-athena",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-common",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-gnome",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-gtk3",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-nox",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "xxd",
"binary_version": "2:8.0.1453-1ubuntu1.13"
}
]
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:8.0.1453-1ubuntu1.13?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:8.0.1453-1ubuntu1.13"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:8.0.0197-4ubuntu5",
"2:8.0.1144-1ubuntu1",
"2:8.0.1401-1ubuntu1",
"2:8.0.1401-1ubuntu2",
"2:8.0.1401-1ubuntu3",
"2:8.0.1453-1ubuntu1",
"2:8.0.1453-1ubuntu1.1",
"2:8.0.1453-1ubuntu1.3",
"2:8.0.1453-1ubuntu1.4",
"2:8.0.1453-1ubuntu1.6",
"2:8.0.1453-1ubuntu1.7",
"2:8.0.1453-1ubuntu1.8",
"2:8.0.1453-1ubuntu1.9",
"2:8.0.1453-1ubuntu1.10",
"2:8.0.1453-1ubuntu1.11",
"2:8.0.1453-1ubuntu1.12"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-athena",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-common",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-gtk3",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-nox",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "xxd",
"binary_version": "2:8.1.2269-1ubuntu5.14"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:8.1.2269-1ubuntu5.14?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:8.1.2269-1ubuntu5.14"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:8.1.0875-5ubuntu2",
"2:8.1.0875-5ubuntu3",
"2:8.1.0875-5ubuntu4",
"2:8.1.2269-1ubuntu1",
"2:8.1.2269-1ubuntu4",
"2:8.1.2269-1ubuntu5",
"2:8.1.2269-1ubuntu5.3",
"2:8.1.2269-1ubuntu5.4",
"2:8.1.2269-1ubuntu5.6",
"2:8.1.2269-1ubuntu5.7",
"2:8.1.2269-1ubuntu5.8",
"2:8.1.2269-1ubuntu5.9",
"2:8.1.2269-1ubuntu5.11",
"2:8.1.2269-1ubuntu5.12",
"2:8.1.2269-1ubuntu5.13"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-athena",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-common",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-gtk3",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-nox",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "xxd",
"binary_version": "2:8.2.3995-1ubuntu2.7"
}
]
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:8.2.3995-1ubuntu2.7?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:8.2.3995-1ubuntu2.7"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:8.2.2434-3ubuntu3",
"2:8.2.2434-3ubuntu4",
"2:8.2.3565-1ubuntu1",
"2:8.2.3565-1ubuntu2",
"2:8.2.3565-1ubuntu3",
"2:8.2.3565-1ubuntu5",
"2:8.2.3995-1ubuntu1",
"2:8.2.3995-1ubuntu2",
"2:8.2.3995-1ubuntu2.1",
"2:8.2.3995-1ubuntu2.3",
"2:8.2.3995-1ubuntu2.4",
"2:8.2.3995-1ubuntu2.5"
]
}
],
"aliases": [],
"details": "Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.",
"id": "UBUNTU-CVE-2022-0359",
"modified": "2025-09-08T16:49:24Z",
"published": "2022-01-26T12:15:00Z",
"references": [
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2022-0359"
},
{
"type": "REPORT",
"url": "https://huntr.dev/bounties/a3192d90-4f82-4a67-b7a6-37046cc88def"
},
{
"type": "REPORT",
"url": "https://github.com/vim/vim/commit/85b6747abc15a7a81086db31289cf1b8b17e6cb1"
},
{
"type": "REPORT",
"url": "https://github.com/vim/vim/commit/85b6747abc15a7a81086db31289cf1b8b17e6cb1"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-5458-1"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-6026-1"
},
{
"type": "REPORT",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0359"
}
],
"related": [
"USN-5458-1",
"USN-6026-1"
],
"schema_version": "1.7.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
],
"upstream": [
"CVE-2022-0359"
]
}
ubuntu-cve-2022-0361
Vulnerability from osv_ubuntu
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.
| URL | Type | ||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||
{
"affected": [
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:7.4.052-1ubuntu3.1+esm31"
},
{
"binary_name": "vim-athena",
"binary_version": "2:7.4.052-1ubuntu3.1+esm31"
},
{
"binary_name": "vim-common",
"binary_version": "2:7.4.052-1ubuntu3.1+esm31"
},
{
"binary_name": "vim-gnome",
"binary_version": "2:7.4.052-1ubuntu3.1+esm31"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:7.4.052-1ubuntu3.1+esm31"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:7.4.052-1ubuntu3.1+esm31"
},
{
"binary_name": "vim-lesstif",
"binary_version": "2:7.4.052-1ubuntu3.1+esm31"
},
{
"binary_name": "vim-nox",
"binary_version": "2:7.4.052-1ubuntu3.1+esm31"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:7.4.052-1ubuntu3.1+esm31"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:7.4.052-1ubuntu3.1+esm31"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:14.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:7.4.052-1ubuntu3.1+esm31?arch=source\u0026distro=esm-infra-legacy/trusty"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:7.4.000-1ubuntu2",
"2:7.4.052-1ubuntu1",
"2:7.4.052-1ubuntu2",
"2:7.4.052-1ubuntu3",
"2:7.4.052-1ubuntu3.1",
"2:7.4.052-1ubuntu3.1+esm1",
"2:7.4.052-1ubuntu3.1+esm3",
"2:7.4.052-1ubuntu3.1+esm4",
"2:7.4.052-1ubuntu3.1+esm5",
"2:7.4.052-1ubuntu3.1+esm6",
"2:7.4.052-1ubuntu3.1+esm7",
"2:7.4.052-1ubuntu3.1+esm8",
"2:7.4.052-1ubuntu3.1+esm9",
"2:7.4.052-1ubuntu3.1+esm10",
"2:7.4.052-1ubuntu3.1+esm11",
"2:7.4.052-1ubuntu3.1+esm12",
"2:7.4.052-1ubuntu3.1+esm13",
"2:7.4.052-1ubuntu3.1+esm14",
"2:7.4.052-1ubuntu3.1+esm15",
"2:7.4.052-1ubuntu3.1+esm16",
"2:7.4.052-1ubuntu3.1+esm17",
"2:7.4.052-1ubuntu3.1+esm18",
"2:7.4.052-1ubuntu3.1+esm19",
"2:7.4.052-1ubuntu3.1+esm20",
"2:7.4.052-1ubuntu3.1+esm21",
"2:7.4.052-1ubuntu3.1+esm22",
"2:7.4.052-1ubuntu3.1+esm23",
"2:7.4.052-1ubuntu3.1+esm24",
"2:7.4.052-1ubuntu3.1+esm25",
"2:7.4.052-1ubuntu3.1+esm26",
"2:7.4.052-1ubuntu3.1+esm27",
"2:7.4.052-1ubuntu3.1+esm28",
"2:7.4.052-1ubuntu3.1+esm29",
"2:7.4.052-1ubuntu3.1+esm30",
"2:7.4.052-1ubuntu3.1+esm31"
]
},
{
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-athena",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-athena-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-common",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gnome",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gnome-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk3",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk3-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-nox",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-nox-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:16.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:7.4.1689-3ubuntu1.5+esm5?arch=source\u0026distro=esm-infra/xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:7.4.1689-3ubuntu1.5+esm5"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:7.4.712-2ubuntu4",
"2:7.4.826-1ubuntu1",
"2:7.4.826-1ubuntu2",
"2:7.4.826-1ubuntu3",
"2:7.4.963-1ubuntu1",
"2:7.4.963-1ubuntu4",
"2:7.4.963-1ubuntu5",
"2:7.4.1689-3ubuntu1",
"2:7.4.1689-3ubuntu1.1",
"2:7.4.1689-3ubuntu1.2",
"2:7.4.1689-3ubuntu1.3",
"2:7.4.1689-3ubuntu1.4",
"2:7.4.1689-3ubuntu1.5",
"2:7.4.1689-3ubuntu1.5+esm2",
"2:7.4.1689-3ubuntu1.5+esm3",
"2:7.4.1689-3ubuntu1.5+esm4"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-athena",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-common",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-gnome",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-gtk3",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-nox",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "xxd",
"binary_version": "2:8.0.1453-1ubuntu1.13"
}
]
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:8.0.1453-1ubuntu1.13?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:8.0.1453-1ubuntu1.13"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:8.0.0197-4ubuntu5",
"2:8.0.1144-1ubuntu1",
"2:8.0.1401-1ubuntu1",
"2:8.0.1401-1ubuntu2",
"2:8.0.1401-1ubuntu3",
"2:8.0.1453-1ubuntu1",
"2:8.0.1453-1ubuntu1.1",
"2:8.0.1453-1ubuntu1.3",
"2:8.0.1453-1ubuntu1.4",
"2:8.0.1453-1ubuntu1.6",
"2:8.0.1453-1ubuntu1.7",
"2:8.0.1453-1ubuntu1.8",
"2:8.0.1453-1ubuntu1.9",
"2:8.0.1453-1ubuntu1.10",
"2:8.0.1453-1ubuntu1.11",
"2:8.0.1453-1ubuntu1.12"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-athena",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-common",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-gtk3",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-nox",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "xxd",
"binary_version": "2:8.1.2269-1ubuntu5.14"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:8.1.2269-1ubuntu5.14?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:8.1.2269-1ubuntu5.14"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:8.1.0875-5ubuntu2",
"2:8.1.0875-5ubuntu3",
"2:8.1.0875-5ubuntu4",
"2:8.1.2269-1ubuntu1",
"2:8.1.2269-1ubuntu4",
"2:8.1.2269-1ubuntu5",
"2:8.1.2269-1ubuntu5.3",
"2:8.1.2269-1ubuntu5.4",
"2:8.1.2269-1ubuntu5.6",
"2:8.1.2269-1ubuntu5.7",
"2:8.1.2269-1ubuntu5.8",
"2:8.1.2269-1ubuntu5.9",
"2:8.1.2269-1ubuntu5.11",
"2:8.1.2269-1ubuntu5.12",
"2:8.1.2269-1ubuntu5.13"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-athena",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-common",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-gtk3",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-nox",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "xxd",
"binary_version": "2:8.2.3995-1ubuntu2.7"
}
]
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:8.2.3995-1ubuntu2.7?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:8.2.3995-1ubuntu2.7"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:8.2.2434-3ubuntu3",
"2:8.2.2434-3ubuntu4",
"2:8.2.3565-1ubuntu1",
"2:8.2.3565-1ubuntu2",
"2:8.2.3565-1ubuntu3",
"2:8.2.3565-1ubuntu5",
"2:8.2.3995-1ubuntu1",
"2:8.2.3995-1ubuntu2",
"2:8.2.3995-1ubuntu2.1",
"2:8.2.3995-1ubuntu2.3",
"2:8.2.3995-1ubuntu2.4",
"2:8.2.3995-1ubuntu2.5"
]
}
],
"aliases": [],
"details": "Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.",
"id": "UBUNTU-CVE-2022-0361",
"modified": "2026-07-14T18:26:11Z",
"published": "2022-01-26T13:15:00Z",
"references": [
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2022-0361"
},
{
"type": "REPORT",
"url": "https://huntr.dev/bounties/a055618c-0311-409c-a78a-99477121965b"
},
{
"type": "REPORT",
"url": "https://github.com/vim/vim/commit/dc5490e2cbc8c16022a23b449b48c1bd0083f366"
},
{
"type": "REPORT",
"url": "https://github.com/vim/vim/commit/dc5490e2cbc8c16022a23b449b48c1bd0083f366"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-5458-1"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-6026-1"
},
{
"type": "REPORT",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0361"
}
],
"related": [
"USN-5458-1",
"USN-6026-1"
],
"schema_version": "1.7.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
],
"upstream": [
"CVE-2022-0361"
]
}
ubuntu-cve-2022-0368
Vulnerability from osv_ubuntu
Out-of-bounds Read in GitHub repository vim/vim prior to 8.2.
| URL | Type | |||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||
{
"affected": [
{
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-athena",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-athena-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-common",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gnome",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gnome-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk3",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk3-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-nox",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-nox-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:16.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:7.4.1689-3ubuntu1.5+esm5?arch=source\u0026distro=esm-infra/xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:7.4.1689-3ubuntu1.5+esm5"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:7.4.712-2ubuntu4",
"2:7.4.826-1ubuntu1",
"2:7.4.826-1ubuntu2",
"2:7.4.826-1ubuntu3",
"2:7.4.963-1ubuntu1",
"2:7.4.963-1ubuntu4",
"2:7.4.963-1ubuntu5",
"2:7.4.1689-3ubuntu1",
"2:7.4.1689-3ubuntu1.1",
"2:7.4.1689-3ubuntu1.2",
"2:7.4.1689-3ubuntu1.3",
"2:7.4.1689-3ubuntu1.4",
"2:7.4.1689-3ubuntu1.5",
"2:7.4.1689-3ubuntu1.5+esm2",
"2:7.4.1689-3ubuntu1.5+esm3",
"2:7.4.1689-3ubuntu1.5+esm4"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-athena",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-common",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-gnome",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-gtk3",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-nox",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "xxd",
"binary_version": "2:8.0.1453-1ubuntu1.13"
}
]
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:8.0.1453-1ubuntu1.13?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:8.0.1453-1ubuntu1.13"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:8.0.0197-4ubuntu5",
"2:8.0.1144-1ubuntu1",
"2:8.0.1401-1ubuntu1",
"2:8.0.1401-1ubuntu2",
"2:8.0.1401-1ubuntu3",
"2:8.0.1453-1ubuntu1",
"2:8.0.1453-1ubuntu1.1",
"2:8.0.1453-1ubuntu1.3",
"2:8.0.1453-1ubuntu1.4",
"2:8.0.1453-1ubuntu1.6",
"2:8.0.1453-1ubuntu1.7",
"2:8.0.1453-1ubuntu1.8",
"2:8.0.1453-1ubuntu1.9",
"2:8.0.1453-1ubuntu1.10",
"2:8.0.1453-1ubuntu1.11",
"2:8.0.1453-1ubuntu1.12"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-athena",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-common",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-gtk3",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-nox",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "xxd",
"binary_version": "2:8.1.2269-1ubuntu5.14"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:8.1.2269-1ubuntu5.14?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:8.1.2269-1ubuntu5.14"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:8.1.0875-5ubuntu2",
"2:8.1.0875-5ubuntu3",
"2:8.1.0875-5ubuntu4",
"2:8.1.2269-1ubuntu1",
"2:8.1.2269-1ubuntu4",
"2:8.1.2269-1ubuntu5",
"2:8.1.2269-1ubuntu5.3",
"2:8.1.2269-1ubuntu5.4",
"2:8.1.2269-1ubuntu5.6",
"2:8.1.2269-1ubuntu5.7",
"2:8.1.2269-1ubuntu5.8",
"2:8.1.2269-1ubuntu5.9",
"2:8.1.2269-1ubuntu5.11",
"2:8.1.2269-1ubuntu5.12",
"2:8.1.2269-1ubuntu5.13"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-athena",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-common",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-gtk3",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-nox",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "xxd",
"binary_version": "2:8.2.3995-1ubuntu2.7"
}
]
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:8.2.3995-1ubuntu2.7?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:8.2.3995-1ubuntu2.7"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:8.2.2434-3ubuntu3",
"2:8.2.2434-3ubuntu4",
"2:8.2.3565-1ubuntu1",
"2:8.2.3565-1ubuntu2",
"2:8.2.3565-1ubuntu3",
"2:8.2.3565-1ubuntu5",
"2:8.2.3995-1ubuntu1",
"2:8.2.3995-1ubuntu2",
"2:8.2.3995-1ubuntu2.1",
"2:8.2.3995-1ubuntu2.3",
"2:8.2.3995-1ubuntu2.4",
"2:8.2.3995-1ubuntu2.5"
]
}
],
"aliases": [],
"details": "Out-of-bounds Read in GitHub repository vim/vim prior to 8.2.",
"id": "UBUNTU-CVE-2022-0368",
"modified": "2025-09-08T16:49:24Z",
"published": "2022-01-26T18:15:00Z",
"references": [
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2022-0368"
},
{
"type": "REPORT",
"url": "https://huntr.dev/bounties/bca9ce1f-400a-4bf9-9207-3f3187cb3fa9/"
},
{
"type": "REPORT",
"url": "https://github.com/vim/vim/commit/8d02ce1ed75d008c34a5c9aaa51b67cbb9d33baa"
},
{
"type": "REPORT",
"url": "https://huntr.dev/bounties/bca9ce1f-400a-4bf9-9207-3f3187cb3fa9"
},
{
"type": "REPORT",
"url": "https://github.com/vim/vim/commit/8d02ce1ed75d008c34a5c9aaa51b67cbb9d33baa"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-5458-1"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-6026-1"
},
{
"type": "REPORT",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0368"
}
],
"related": [
"USN-5458-1",
"USN-6026-1"
],
"schema_version": "1.7.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
],
"upstream": [
"CVE-2022-0368"
]
}
ubuntu-cve-2022-0408
Vulnerability from osv_ubuntu
Stack-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.
| URL | Type | ||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||
{
"affected": [
{
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-athena",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-common",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-gnome",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-lesstif",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-nox",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:14.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:7.4.052-1ubuntu3.1+esm9?arch=source\u0026distro=trusty/esm"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:7.4.052-1ubuntu3.1+esm9"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:7.4.000-1ubuntu2",
"2:7.4.052-1ubuntu1",
"2:7.4.052-1ubuntu2",
"2:7.4.052-1ubuntu3",
"2:7.4.052-1ubuntu3.1",
"2:7.4.052-1ubuntu3.1+esm1",
"2:7.4.052-1ubuntu3.1+esm3",
"2:7.4.052-1ubuntu3.1+esm4",
"2:7.4.052-1ubuntu3.1+esm5",
"2:7.4.052-1ubuntu3.1+esm6",
"2:7.4.052-1ubuntu3.1+esm7",
"2:7.4.052-1ubuntu3.1+esm8"
]
},
{
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-athena",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-athena-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-common",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gnome",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gnome-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk3",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk3-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-nox",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-nox-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:16.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:7.4.1689-3ubuntu1.5+esm5?arch=source\u0026distro=esm-infra/xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:7.4.1689-3ubuntu1.5+esm5"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:7.4.712-2ubuntu4",
"2:7.4.826-1ubuntu1",
"2:7.4.826-1ubuntu2",
"2:7.4.826-1ubuntu3",
"2:7.4.963-1ubuntu1",
"2:7.4.963-1ubuntu4",
"2:7.4.963-1ubuntu5",
"2:7.4.1689-3ubuntu1",
"2:7.4.1689-3ubuntu1.1",
"2:7.4.1689-3ubuntu1.2",
"2:7.4.1689-3ubuntu1.3",
"2:7.4.1689-3ubuntu1.4",
"2:7.4.1689-3ubuntu1.5",
"2:7.4.1689-3ubuntu1.5+esm2",
"2:7.4.1689-3ubuntu1.5+esm3",
"2:7.4.1689-3ubuntu1.5+esm4"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-athena",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-common",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-gnome",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-gtk3",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-nox",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "xxd",
"binary_version": "2:8.0.1453-1ubuntu1.13"
}
]
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:8.0.1453-1ubuntu1.13?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:8.0.1453-1ubuntu1.13"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:8.0.0197-4ubuntu5",
"2:8.0.1144-1ubuntu1",
"2:8.0.1401-1ubuntu1",
"2:8.0.1401-1ubuntu2",
"2:8.0.1401-1ubuntu3",
"2:8.0.1453-1ubuntu1",
"2:8.0.1453-1ubuntu1.1",
"2:8.0.1453-1ubuntu1.3",
"2:8.0.1453-1ubuntu1.4",
"2:8.0.1453-1ubuntu1.6",
"2:8.0.1453-1ubuntu1.7",
"2:8.0.1453-1ubuntu1.8",
"2:8.0.1453-1ubuntu1.9",
"2:8.0.1453-1ubuntu1.10",
"2:8.0.1453-1ubuntu1.11",
"2:8.0.1453-1ubuntu1.12"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-athena",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-common",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-gtk3",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-nox",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "xxd",
"binary_version": "2:8.1.2269-1ubuntu5.14"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:8.1.2269-1ubuntu5.14?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:8.1.2269-1ubuntu5.14"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:8.1.0875-5ubuntu2",
"2:8.1.0875-5ubuntu3",
"2:8.1.0875-5ubuntu4",
"2:8.1.2269-1ubuntu1",
"2:8.1.2269-1ubuntu4",
"2:8.1.2269-1ubuntu5",
"2:8.1.2269-1ubuntu5.3",
"2:8.1.2269-1ubuntu5.4",
"2:8.1.2269-1ubuntu5.6",
"2:8.1.2269-1ubuntu5.7",
"2:8.1.2269-1ubuntu5.8",
"2:8.1.2269-1ubuntu5.9",
"2:8.1.2269-1ubuntu5.11",
"2:8.1.2269-1ubuntu5.12",
"2:8.1.2269-1ubuntu5.13"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-athena",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-common",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-gtk3",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-nox",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "xxd",
"binary_version": "2:8.2.3995-1ubuntu2.7"
}
]
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:8.2.3995-1ubuntu2.7?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:8.2.3995-1ubuntu2.7"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:8.2.2434-3ubuntu3",
"2:8.2.2434-3ubuntu4",
"2:8.2.3565-1ubuntu1",
"2:8.2.3565-1ubuntu2",
"2:8.2.3565-1ubuntu3",
"2:8.2.3565-1ubuntu5",
"2:8.2.3995-1ubuntu1",
"2:8.2.3995-1ubuntu2",
"2:8.2.3995-1ubuntu2.1",
"2:8.2.3995-1ubuntu2.3",
"2:8.2.3995-1ubuntu2.4",
"2:8.2.3995-1ubuntu2.5"
]
}
],
"aliases": [],
"details": "Stack-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.",
"id": "UBUNTU-CVE-2022-0408",
"modified": "2025-09-08T16:49:25Z",
"published": "2022-01-30T15:15:00Z",
"references": [
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2022-0408"
},
{
"type": "REPORT",
"url": "https://huntr.dev/bounties/5e635bad-5cf6-46cd-aeac-34ef224e179d"
},
{
"type": "REPORT",
"url": "https://github.com/vim/vim/commit/06f15416bb8d5636200a10776f1752c4d6e49f31"
},
{
"type": "REPORT",
"url": "https://github.com/vim/vim/commit/06f15416bb8d5636200a10776f1752c4d6e49f31"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-5458-1"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-6026-1"
},
{
"type": "REPORT",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0408"
}
],
"related": [
"USN-5458-1",
"USN-6026-1"
],
"schema_version": "1.7.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
],
"upstream": [
"CVE-2022-0408"
]
}
ubuntu-cve-2022-0443
Vulnerability from osv_ubuntu
Use After Free in GitHub repository vim/vim prior to 8.2.
| URL | Type | ||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||
{
"affected": [
{
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-athena",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-common",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-gnome",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-lesstif",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-nox",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:7.4.052-1ubuntu3.1+esm9"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:14.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:7.4.052-1ubuntu3.1+esm9?arch=source\u0026distro=trusty/esm"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:7.4.052-1ubuntu3.1+esm9"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:7.4.000-1ubuntu2",
"2:7.4.052-1ubuntu1",
"2:7.4.052-1ubuntu2",
"2:7.4.052-1ubuntu3",
"2:7.4.052-1ubuntu3.1",
"2:7.4.052-1ubuntu3.1+esm1",
"2:7.4.052-1ubuntu3.1+esm3",
"2:7.4.052-1ubuntu3.1+esm4",
"2:7.4.052-1ubuntu3.1+esm5",
"2:7.4.052-1ubuntu3.1+esm6",
"2:7.4.052-1ubuntu3.1+esm7",
"2:7.4.052-1ubuntu3.1+esm8"
]
},
{
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-athena",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-athena-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-common",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gnome",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gnome-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk3",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gtk3-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-nox",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-nox-py2",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:7.4.1689-3ubuntu1.5+esm5"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:16.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:7.4.1689-3ubuntu1.5+esm5?arch=source\u0026distro=esm-infra/xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:7.4.1689-3ubuntu1.5+esm5"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:7.4.712-2ubuntu4",
"2:7.4.826-1ubuntu1",
"2:7.4.826-1ubuntu2",
"2:7.4.826-1ubuntu3",
"2:7.4.963-1ubuntu1",
"2:7.4.963-1ubuntu4",
"2:7.4.963-1ubuntu5",
"2:7.4.1689-3ubuntu1",
"2:7.4.1689-3ubuntu1.1",
"2:7.4.1689-3ubuntu1.2",
"2:7.4.1689-3ubuntu1.3",
"2:7.4.1689-3ubuntu1.4",
"2:7.4.1689-3ubuntu1.5",
"2:7.4.1689-3ubuntu1.5+esm2",
"2:7.4.1689-3ubuntu1.5+esm3",
"2:7.4.1689-3ubuntu1.5+esm4"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-athena",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-common",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-gnome",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-gtk3",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-nox",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:8.0.1453-1ubuntu1.13"
},
{
"binary_name": "xxd",
"binary_version": "2:8.0.1453-1ubuntu1.13"
}
]
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:8.0.1453-1ubuntu1.13?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:8.0.1453-1ubuntu1.13"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:8.0.0197-4ubuntu5",
"2:8.0.1144-1ubuntu1",
"2:8.0.1401-1ubuntu1",
"2:8.0.1401-1ubuntu2",
"2:8.0.1401-1ubuntu3",
"2:8.0.1453-1ubuntu1",
"2:8.0.1453-1ubuntu1.1",
"2:8.0.1453-1ubuntu1.3",
"2:8.0.1453-1ubuntu1.4",
"2:8.0.1453-1ubuntu1.6",
"2:8.0.1453-1ubuntu1.7",
"2:8.0.1453-1ubuntu1.8",
"2:8.0.1453-1ubuntu1.9",
"2:8.0.1453-1ubuntu1.10",
"2:8.0.1453-1ubuntu1.11",
"2:8.0.1453-1ubuntu1.12"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-athena",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-common",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-gtk3",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-nox",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:8.1.2269-1ubuntu5.14"
},
{
"binary_name": "xxd",
"binary_version": "2:8.1.2269-1ubuntu5.14"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:8.1.2269-1ubuntu5.14?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:8.1.2269-1ubuntu5.14"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:8.1.0875-5ubuntu2",
"2:8.1.0875-5ubuntu3",
"2:8.1.0875-5ubuntu4",
"2:8.1.2269-1ubuntu1",
"2:8.1.2269-1ubuntu4",
"2:8.1.2269-1ubuntu5",
"2:8.1.2269-1ubuntu5.3",
"2:8.1.2269-1ubuntu5.4",
"2:8.1.2269-1ubuntu5.6",
"2:8.1.2269-1ubuntu5.7",
"2:8.1.2269-1ubuntu5.8",
"2:8.1.2269-1ubuntu5.9",
"2:8.1.2269-1ubuntu5.11",
"2:8.1.2269-1ubuntu5.12",
"2:8.1.2269-1ubuntu5.13"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "vim",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-athena",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-common",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-gtk",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-gtk3",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-gui-common",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-nox",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-runtime",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "vim-tiny",
"binary_version": "2:8.2.3995-1ubuntu2.7"
},
{
"binary_name": "xxd",
"binary_version": "2:8.2.3995-1ubuntu2.7"
}
]
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "vim",
"purl": "pkg:deb/ubuntu/vim@2:8.2.3995-1ubuntu2.7?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2:8.2.3995-1ubuntu2.7"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2:8.2.2434-3ubuntu3",
"2:8.2.2434-3ubuntu4",
"2:8.2.3565-1ubuntu1",
"2:8.2.3565-1ubuntu2",
"2:8.2.3565-1ubuntu3",
"2:8.2.3565-1ubuntu5",
"2:8.2.3995-1ubuntu1",
"2:8.2.3995-1ubuntu2",
"2:8.2.3995-1ubuntu2.1",
"2:8.2.3995-1ubuntu2.3",
"2:8.2.3995-1ubuntu2.4",
"2:8.2.3995-1ubuntu2.5"
]
}
],
"aliases": [],
"details": "Use After Free in GitHub repository vim/vim prior to 8.2.",
"id": "UBUNTU-CVE-2022-0443",
"modified": "2025-09-08T16:49:25Z",
"published": "2022-02-02T21:15:00Z",
"references": [
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2022-0443"
},
{
"type": "REPORT",
"url": "https://huntr.dev/bounties/b987c8cb-bbbe-4601-8a6c-54ff907c6b51"
},
{
"type": "REPORT",
"url": "https://github.com/vim/vim/commit/9b4a80a66544f2782040b641498754bcb5b8d461"
},
{
"type": "REPORT",
"url": "https://github.com/vim/vim/commit/9b4a80a66544f2782040b641498754bcb5b8d461"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-5458-1"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-6026-1"
},
{
"type": "REPORT",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0443"
}
],
"related": [
"USN-5458-1",
"USN-6026-1"
],
"schema_version": "1.7.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
],
"upstream": [
"CVE-2022-0443"
]
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.