CVE-2023-5344

Summary

CVE	CVE-2023-5344
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2023-10-02 20:15:00 UTC
Updated	2023-11-03 22:15:00 UTC
Description	Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1969.

Risk And Classification

Problem Types: CWE-122

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Operating System	Fedoraproject	Fedora	37	All	All	All
Operating System	Fedoraproject	Fedora	38	All	All	All
Application	Vim	Vim	All	All	All	All

References

Reference	Source	Link	Tags
[SECURITY] Fedora 37 Update: vim-9.0.1984-1.fc37 - package-announce - Fedora Mailing-Lists	MISC	lists.fedoraproject.org
huntr – Security Bounties for any GitHub repository	MISC	huntr.dev
[SECURITY] Fedora 38 Update: vim-9.0.1984-1.fc38 - package-announce - Fedora Mailing-Lists	MISC	lists.fedoraproject.org
[SECURITY] Fedora 39 Update: vim-9.0.2048-1.fc39 - package-announce - Fedora Mailing-Lists	MISC	lists.fedoraproject.org
patch 9.0.1969: [security] buffer-overflow in trunc_string() · vim/vim@3bd7fa1 · GitHub	MISC	github.com
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

Legacy QID Mappings

199867 Ubuntu Security Notification for Vim Vulnerabilities (USN-6452-1)
284588 Fedora Security Update for vim (FEDORA-2023-b695d3e2a8)
284615 Fedora Security Update for vim (FEDORA-2023-c0da722865)
285183 Fedora Security Update for vim (FEDORA-2023-1976197889)
296107 Oracle Solaris 11.4 Support Repository Update (SRU) 65.157.1 Missing (CPUJAN2024)
356419 Amazon Linux Security Advisory for vim : ALAS2-2023-2288
356517 Amazon Linux Security Advisory for vim : ALAS2023-2023-378
356783 Amazon Linux Security Advisory for vim : ALAS-2023-1893
357186 Amazon Linux Security Advisory for vim : AL2012-2024-485
379124 Apple macOS Ventura 13.6.3 Not Installed (HT214038)
379125 Apple macOS Sonoma 14.2 Not Installed (HT214036)
379126 Apple macOS Monterey 12.7.2 Not Installed (HT214037)
503545 Alpine Linux Security Update for vim
505959 Alpine Linux Security Update for vim
673421 EulerOS Security Update for vim (EulerOS-SA-2024-1306)
673552 EulerOS Security Update for vim (EulerOS-SA-2024-1099)
673558 EulerOS Security Update for vim (EulerOS-SA-2023-3288)
673740 EulerOS Security Update for vim (EulerOS-SA-2024-1075)
673745 EulerOS Security Update for vim (EulerOS-SA-2023-3320)
673779 EulerOS Security Update for vim (EulerOS-SA-2023-3260)
673841 EulerOS Security Update for vim (EulerOS-SA-2023-3352)
673961 EulerOS Security Update for vim (EulerOS-SA-2024-1168)
907364 Common Base Linux Mariner (CBL-Mariner) Security Update for vim (31041)
907482 Common Base Linux Mariner (CBL-Mariner) Security Update for vim (31041-1)