CVE-2021-4192
Summary
| CVE | CVE-2021-4192 |
|---|
| State | PUBLIC |
|---|
| Assigner | [email protected] |
|---|
| Source Priority | CVE Program / NVD first with legacy fallback |
|---|
| Published | 2021-12-31 15:15:00 UTC |
|---|
| Updated | 2023-11-07 03:40:00 UTC |
|---|
| Description | vim is vulnerable to Use After Free |
|---|
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|
| Operating System |
Apple |
Macos |
All |
All |
All |
All |
| Operating System |
Apple |
Macos |
10.15.7 |
All |
All |
All |
| Operating System |
Apple |
Macos |
10.15.7 |
security_update_2020-001 |
All |
All |
| Operating System |
Apple |
Macos |
10.15.7 |
security_update_2021-001 |
All |
All |
| Operating System |
Apple |
Macos |
10.15.7 |
security_update_2021-002 |
All |
All |
| Operating System |
Apple |
Macos |
10.15.7 |
security_update_2021-003 |
All |
All |
| Operating System |
Apple |
Macos |
10.15.7 |
security_update_2021-004 |
All |
All |
| Operating System |
Apple |
Macos |
10.15.7 |
security_update_2021-005 |
All |
All |
| Operating System |
Apple |
Macos |
10.15.7 |
security_update_2021-006 |
All |
All |
| Operating System |
Apple |
Macos |
10.15.7 |
security_update_2021-007 |
All |
All |
| Operating System |
Apple |
Macos |
10.15.7 |
security_update_2021-008 |
All |
All |
| Operating System |
Apple |
Macos |
10.15.7 |
security_update_2022-001 |
All |
All |
| Operating System |
Apple |
Macos |
10.15.7 |
security_update_2022-002 |
All |
All |
| Operating System |
Apple |
Macos |
10.15.7 |
security_update_2022-003 |
All |
All |
| Operating System |
Apple |
Macos |
10.15.7 |
security_update_2022-004 |
All |
All |
| Operating System |
Apple |
Mac Os X |
10.15.7 |
All |
All |
All |
| Operating System |
Apple |
Mac Os X |
10.15.7 |
security_update_2020-001 |
All |
All |
| Operating System |
Apple |
Mac Os X |
10.15.7 |
security_update_2021-001 |
All |
All |
| Operating System |
Apple |
Mac Os X |
10.15.7 |
security_update_2021-002 |
All |
All |
| Operating System |
Apple |
Mac Os X |
10.15.7 |
security_update_2021-003 |
All |
All |
| Operating System |
Apple |
Mac Os X |
10.15.7 |
security_update_2021-004 |
All |
All |
| Operating System |
Apple |
Mac Os X |
10.15.7 |
security_update_2021-005 |
All |
All |
| Operating System |
Apple |
Mac Os X |
10.15.7 |
security_update_2021-006 |
All |
All |
| Operating System |
Apple |
Mac Os X |
10.15.7 |
security_update_2021-007 |
All |
All |
| Operating System |
Apple |
Mac Os X |
10.15.7 |
security_update_2021-008 |
All |
All |
| Operating System |
Apple |
Mac Os X |
10.15.7 |
security_update_2022-001 |
All |
All |
| Operating System |
Apple |
Mac Os X |
10.15.7 |
security_update_2022-002 |
All |
All |
| Operating System |
Apple |
Mac Os X |
10.15.7 |
security_update_2022-003 |
All |
All |
| Operating System |
Debian |
Debian Linux |
10.0 |
All |
All |
All |
| Operating System |
Debian |
Debian Linux |
9.0 |
All |
All |
All |
| Operating System |
Fedoraproject |
Fedora |
34 |
All |
All |
All |
| Application |
Vim |
Vim |
All |
All |
All |
All |
References
| Reference | Source | Link | Tags |
|---|
| [SECURITY] [DLA 3182-1] vim security update |
MLIST |
lists.debian.org |
|
| About the security content of macOS Big Sur 11.6.6 - Apple Support |
CONFIRM |
support.apple.com |
|
| oss-security - Re: 3 new CVE's in vim |
MLIST |
www.openwall.com |
|
| Full Disclosure: APPLE-SA-2022-03-14-4 macOS Monterey 12.3 |
FULLDISC |
seclists.org |
|
| Vim, gVim: Multiple Vulnerabilities (GLSA 202208-32) — Gentoo security |
GENTOO |
security.gentoo.org |
|
| [SECURITY] Fedora 34 Update: vim-8.2.4068-1.fc34 - package-announce - Fedora Mailing-Lists |
|
lists.fedoraproject.org |
|
| [SECURITY] Fedora 34 Update: vim-8.2.4068-1.fc34 - package-announce - Fedora Mailing-Lists |
FEDORA |
lists.fedoraproject.org |
|
| patch 8.2.3949: using freed memory with /\%V · vim/vim@4c13e5e · GitHub |
MISC |
github.com |
|
| [SECURITY] [DLA 2947-1] vim security update |
MLIST |
lists.debian.org |
|
| Full Disclosure: APPLE-SA-2022-05-16-3 macOS Big Sur 11.6.6 |
FULLDISC |
seclists.org |
|
| huntr – the Bug Bounty Platform for any GitHub repository |
CONFIRM |
huntr.dev |
|
| About the security content of Security Update 2022-005 Catalina - Apple Support |
CONFIRM |
support.apple.com |
|
| About the security content of macOS Monterey 12.3 - Apple Support (PH) |
CONFIRM |
support.apple.com |
|
| Full Disclosure: APPLE-SA-2022-07-20-4 Security Update 2022-005 Catalina |
FULLDISC |
seclists.org |
|
| CVE Program record |
CVE.ORG |
www.cve.org |
canonical |
| NVD vulnerability detail |
NVD |
nvd.nist.gov |
canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 159623 Oracle Enterprise Linux Security Update for vim (ELSA-2022-0366)
- 179126 Debian Security Update for vim (DLA 2947-1)
- 181198 Debian Security Update for vim (DLA 3182-1)
- 184944 Debian Security Update for vim (CVE-2021-4192)
- 199293 Ubuntu Security Notification for Vim Vulnerabilities (USN-6026-1)
- 240055 Red Hat Update for vim (RHSA-2022:0366)
- 282279 Fedora Security Update for vim (FEDORA-2022-48b86d586f)
- 296063 Oracle Solaris 11.4 Support Repository Update (SRU) 45.119.2 Missing (CPUAPR2022)
- 354382 Amazon Linux Security Advisory for vim : ALAS2022-2022-014
- 354497 Amazon Linux Security Advisory for vim : ALAS2022-2022-155
- 354585 Amazon Linux Security Advisory for vim : ALAS-2022-155
- 355135 Amazon Linux Security Advisory for vim : ALAS2023-2023-098
- 376485 Apple MacOS Monterey 12.3 Not Installed (HT213183)
- 376608 Apple MacOS Big Sur 11.6.6 Not Installed (HT213256)
- 376739 Apple macOS Security Update 2022-005 Catalina (HT213343)
- 377370 Alibaba Cloud Linux Security Update for vim (ALINUX3-SA-2022:0011)
- 500730 Alpine Linux Security Update for vim
- 503065 Alpine Linux Security Update for vim
- 503333 Alpine Linux Security Update for vim
- 503407 Alpine Linux Security Update for vim
- 503496 Alpine Linux Security Update for vim
- 503523 Alpine Linux Security Update for vim
- 503571 Alpine Linux Security Update for vim
- 503608 Alpine Linux Security Update for vim
- 503639 Alpine Linux Security Update for vim
- 503658 Alpine Linux Security Update for vim
- 505951 Alpine Linux Security Update for vim
- 671397 EulerOS Security Update for vim (EulerOS-SA-2022-1339)
- 671418 EulerOS Security Update for vim (EulerOS-SA-2022-1363)
- 671458 EulerOS Security Update for vim (EulerOS-SA-2022-1441)
- 671465 EulerOS Security Update for vim (EulerOS-SA-2022-1462)
- 671501 EulerOS Security Update for vim (EulerOS-SA-2022-1499)
- 671521 EulerOS Security Update for vim (EulerOS-SA-2022-1518)
- 671650 EulerOS Security Update for vim (EulerOS-SA-2022-1769)
- 710607 Gentoo Linux Vim, gVim Multiple Vulnerabilities (GLSA 202208-32)
- 752246 SUSE Enterprise Linux Security Update for vim (SUSE-SU-2022:2102-1)
- 753066 SUSE Enterprise Linux Security Update for vim (SUSE-SU-2022:4619-1)
- 900500 Common Base Linux Mariner (CBL-Mariner) Security Update for vim (7077)
- 901499 Common Base Linux Mariner (CBL-Mariner) Security Update for vim (7085-1)
- 940444 AlmaLinux Security Update for vim (ALSA-2022:0366)
- 960721 Rocky Linux Security Update for vim (RLSA-2022:0366)
