HCE2-SA-2024-0188 Important HCE 2.0 Security Fix(es): Use after free in utf_ptr2char in GitHub repository vim/vim prior to 8.2.4646. (CVE-2022-1154) Heap-based Buffer Overflow occurs in vim in GitHub repository vim/vim prior to 8.2.4563. (CVE-2022-0943) Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. (CVE-2022-1942) Stack-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. (CVE-2022-0629) Buffer Over-read in function find_next_quote in GitHub repository vim/vim prior to 8.2.4925. This vulnerabilities are capable of crashing software, Modify Memory, and possible remote execution (CVE-2022-1629) NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.4428. (CVE-2022-0696) Out-of-bounds Write in GitHub repository vim/vim prior to 8.2.4977. (CVE-2022-1785) Uncontrolled Recursion in GitHub repository vim/vim prior to 8.2.4975. (CVE-2022-1771) Classic Buffer Overflow in GitHub repository vim/vim prior to 8.2.4969. (CVE-2022-1735) Use After Free in GitHub repository vim/vim prior to 8.2. (CVE-2022-2042) NULL Pointer Dereference in function vim_regexec_string at regexp.c:2729 in GitHub repository vim/vim prior to 8.2.4901. NULL Pointer Dereference in function vim_regexec_string at regexp.c:2729 allows attackers to cause a denial of service (application crash) via a crafted input. (CVE-2022-1620) vim is vulnerable to Use After Free (CVE-2021-4069) Use after free in append_command in GitHub repository vim/vim prior to 8.2.4895. This vulnerability is capable of crashing software, Bypass Protection Mechanism, Modify Memory, and possible remote execution (CVE-2022-1616) Heap buffer overflow in vim_strncpy find_word in GitHub repository vim/vim prior to 8.2.4919. This vulnerability is capable of crashing software, Bypass Protection Mechanism, Modify Memory, and possible remote execution (CVE-2022-1621) Use After Free in GitHub repository vim/vim prior to 8.2. (CVE-2022-1898) Use After Free in GitHub repository vim/vim prior to 8.2. (CVE-2022-1968) Out-of-bounds Write in GitHub repository vim/vim prior to 8.2. (CVE-2022-1897) Use After Free in GitHub repository vim/vim prior to 8.2.4979. (CVE-2022-1796) Out-of-bounds Write in GitHub repository vim/vim prior to 8.2. (CVE-2022-2000) Buffer Over-read in function grab_file_name in GitHub repository vim/vim prior to 8.2.4956. This vulnerability is capable of crashing the software, memory modification, and possible remote execution. (CVE-2022-1720) NULL Pointer Dereference in function vim_regexec_string at regexp.c:2733 in GitHub repository vim/vim prior to 8.2.4938. NULL Pointer Dereference in function vim_regexec_string at regexp.c:2733 allows attackers to cause a denial of service (application crash) via a crafted input. (CVE-2022-1674) Heap-based Buffer Overflow in function cmdline_erase_chars in GitHub repository vim/vim prior to 8.2.4899. This vulnerabilities are capable of crashing software, modify memory, and possible remote execution (CVE-2022-1619) Out-of-bounds Read in GitHub repository vim/vim prior to 8.2. (CVE-2022-1851) Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.4968. (CVE-2022-1733) NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.4959. (CVE-2022-1725) Buffer Over-read in GitHub repository vim/vim prior to 8.2. (CVE-2022-1927) HCE 2.0 vim-common-9.0-1.r25.hce2.aarch64.rpm vim-enhanced-9.0-1.r25.hce2.aarch64.rpm vim-filesystem-9.0-1.r25.hce2.noarch.rpm vim-minimal-9.0-1.r25.hce2.aarch64.rpm vim-common-9.0-1.r25.hce2.x86_64.rpm vim-enhanced-9.0-1.r25.hce2.x86_64.rpm vim-filesystem-9.0-1.r25.hce2.noarch.rpm vim-minimal-9.0-1.r25.hce2.x86_64.rpm