Project

General

Profile

Bug #6861

vim: Tree length values not validated properly when handling a spell file (CVE-2017-5953)

Added by Alicha CH over 2 years ago. Updated over 2 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Category:
Security
Target version:
-
Start date:
02/15/2017
Due date:
% Done:

100%

Estimated time:
(Total: 0.00 h)
Affected versions:
Security IDs:

Description

vim before patch 8.0.0322 does not properly validate values for tree length when handling a spell file, which may result
in an integer overflow at a memory allocation site and a resultant buffer overflow.

Reference:

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-5953

Patch:

https://github.com/vim/vim/commit/399c297aa93afe2c0a39e2a1b3f972aebba44c9d


Subtasks

Bug #6862: [3.6] vim: Tree length values not validated properly when handling a spell file (CVE-2017-5953)ClosedNatanael Copa

Bug #6863: [3.5] vim: Tree length values not validated properly when handling a spell file (CVE-2017-5953)ClosedNatanael Copa

Bug #6864: [3.4] vim: Tree length values not validated properly when handling a spell file (CVE-2017-5953)ClosedNatanael Copa

Bug #6865: [3.3] vim: Tree length values not validated properly when handling a spell file (CVE-2017-5953)ClosedNatanael Copa

Bug #6866: [3.2] vim: Tree length values not validated properly when handling a spell file (CVE-2017-5953)ClosedNatanael Copa

History

#1 Updated by Alicha CH over 2 years ago

  • Project changed from Alpine Security to Alpine Linux
  • Category set to Security
  • Status changed from New to Closed

Also available in: Atom PDF